As a Co-founder and CPO at Cribl, I'm genuinely stoked that our new federal suite, Cribl.Cloud Government, has achieved an “In Process” designation under the Federal Risk and Authorization Management Program (FedRAMP). This isn’t any old milestone. We’re bringing all of Cribl’s kickass capabilities to government agencies, even those that require the strictest compliance and security standards.
Because, who doesn’t love a good set of rules?
Soon, federal agencies will realize some of the same benefits that state, local, and educational government entities have discovered with our products. We help organizations tame their unruly telemetry data to bolster cybersecurity and enhance their ability to detect potential outages. At the same time, our products help customers reduce costs and maintain control, all without ever locking customers into a specific platform.
When FedRAMP began in 2011, the U.S. federal government sought a secure way for agencies to use commercially available infrastructure cloud services for their enhanced scalability and automation. To mitigate security risks, the government established security controls and a framework for continuous monitoring.
Federal agencies will spend an estimated $8.3 billion on cloud services in fiscal year 2025, according to GovWin IQ Market Intelligence. Today, the FedRAMP Marketplace lists over 500 services, and I'm proud to announce that Cribl.Cloud Government is now among them.
Bringing Choice, Control, and Flexibility to Federal Agencies
Up until now, federal agencies primarily used our self-managed software, specifically Cribl Stream and Cribl Edge, due to strict compliance requirements. Don’t get me wrong, these have changed the game for these organizations’ telemetry. Once we have the authority to operate under FedRAMP, the full suite of Cribl products will be available in an environment that meets the strict security requirements of the federal government.
With a FedRAMP-compliant version of Stream, for example, government agencies will get fully managed hosting, automated upgrades, instant scaling, and built-in government-grade security, eliminating the need for customers to maintain infrastructure, apply manual patches, or manage security controls. Federal agencies will gain full access to the powerful capabilities of Cribl Search and Cribl Lake, products that were previously only offered commercially in the cloud. Imagine the flexibility of routing data directly to Cribl Lake for cost-effective storage and on-demand analysis, something that wasn't previously possible with our products in a compliant federal environment.
While the direct advantages for federal customers are evident, this FedRAMP authorization will also deliver substantial benefits to all our customers, across both the public and commercial sectors. FedRAMP stands as one of the most rigorous security programs available. Think of it as the final boss level of data security. Attaining this authorization signifies that we have embedded an unparalleled level of operational rigor and security maturity into our core processes. This unwavering commitment extends to everything we do, assuring all our customers of the highest levels of data protection and reliability.
We eagerly anticipate collaborating with new federal customers and commercial partners who also serve the federal government and require authorized FedRAMP providers. Resellers and channel partners can learn more with our FAQ.
Building for Highly Sensitive, Highly Impactful Data
Achieving this FedRAMP-authorized environment was, without exaggeration, a gargantuan undertaking. Basically we moved a digital mountain and let’s just say there were a few late nights and extra-large coffees involved. We effectively rebuilt our portfolio in a new environment, meticulously adhering to NIST security standards. This demanded a monumental effort from our engineering, security, compliance, and product teams across the organization. We fundamentally re-evaluated our deployment, security, support, and maintenance protocols, ensuring that every component, including third-party elements, met or exceeded the stringent NIST and FISMA requirements.
The work involved more than changes to our product portfolio as we upgraded processes, protocols, and tools throughout the company. We even transitioned to a federal marketplace version of Slack for our support operations within this environment. This wasn't merely about ticking boxes; it was about fundamentally elevating our product and our processes to meet the exacting standards of the federal government. The discipline and meticulous attention to detail instilled during this process now permeate every facet of Cribl's operations.
I consider this a "coming out party" for Cribl as a truly mature enterprise software company (but don’t worry, the goats aren’t going anywhere). Achieving such a designation requires robust engineering, operations, support, compliance, and security programs. This provides powerful validation of our capabilities and the trust that can be placed in our cloud offerings.
Our next significant milestone is achieving Authority to Operate (ATO), which will enable customers to procure our services directly through the FedRAMP marketplace. This is a monumental step for both our federal customers and our commercial partners that also serve the federal government and require authorized FedRAMP providers. It significantly streamlines procurement and accelerates the adoption of Cribl products.
We are absolutely thrilled to offer the full power of Cribl’s telemetry data management to federal agencies. This achievement underscores our commitment to providing secure, efficient, and cost-effective solutions for the U.S. government's critical needs. We eagerly anticipate empowering federal customers to gain unparalleled insights, bolster their security, and optimize their data operations. So, get ready, Uncle Sam, your telemetry data’s about to get a serious upgrade.
