Pete Waterman Takes the Helm of FedRAMP: A New Era in Cloud Security

In a significant development for cloud security within the federal government, Pete Waterman has been appointed as the new director of the Federal Risk Authorization Management Program (FedRAMP) at the General Services Administration (GSA). This appointment marks Waterman’s return to public service after a brief hiatus following his role as an advisor for the Technology Modernization Fund (TMF). His extensive background in both the private and public sectors positions him uniquely to lead FedRAMP into its next phase of modernization and growth.

A Return to Federal Service

Waterman’s journey in federal service began in 2019 when he joined the United States Digital Service (USDS) as a staff engineer. During his tenure, he played a pivotal role in helping various agencies develop policies and architectural frameworks aimed at adopting modern engineering, product, and design practices. His expertise in cloud services and zero trust architecture became even more pronounced during his time at the TMF, where he served as a senior technical advisor. In this capacity, he guided executives and project leads in executing federal modernization projects, focusing on innovative cloud solutions.

After leaving the TMF in February, Waterman’s return to the GSA comes at a crucial time for FedRAMP, which has been without a permanent director since Ashley Mahan departed in January 2021. Brian Conrad, who served as the acting director for over three years, recently transitioned to a role at Zscaler, leaving a leadership void that Waterman is now set to fill.

FedRAMP: A Program in Transition

FedRAMP is undergoing a significant transformation, driven by the implementation of the FedRAMP Authorization Act and an updated policy from the Office of Management and Budget (OMB) for the first time in 13 years. The updated policy, issued in late July, aims to address long-standing challenges and pain points within the program. Waterman’s leadership comes at a time when the FedRAMP program management office is poised to embrace these changes and enhance its operational framework.

Eric Mill, GSA’s executive director of cloud strategy, expressed confidence in Waterman’s ability to build on the existing momentum within the FedRAMP team. In an email to staff, Mill highlighted Waterman’s extensive experience as an implementer and leader across various technology roles, both in the public and private sectors. He emphasized that Waterman is well-positioned to establish key relationships across the executive branch and guide FedRAMP into its next iteration.

Modernization Efforts and Future Goals

Waterman’s appointment coincides with several initiatives aimed at modernizing FedRAMP. Mill has been leading efforts to refine the authorization process, introducing new metrics and over two dozen initiatives designed to streamline operations. Among these initiatives are an agile delivery pilot and a new “fast pass” process for cloud services that incorporate artificial intelligence capabilities. These changes are intended to alleviate vendor frustrations and enhance the overall efficiency of the program.

As Waterman steps into his role, he will also oversee the onboarding of new talent within the FedRAMP team, including the second U.S. Digital Corps fellow and several key technical hires. These additions are expected to further strengthen FedRAMP’s capabilities and foster a more technology-forward approach to cloud security.

Looking Ahead

The future of FedRAMP under Waterman’s leadership appears promising. His extensive experience in cloud-based software, machine learning platforms, and automated data center management systems will be invaluable as the program navigates its modernization journey. Waterman’s vision for FedRAMP will likely focus on enhancing collaboration across federal agencies and ensuring that cloud security measures are robust and adaptable to the evolving technological landscape.

In conclusion, Pete Waterman’s return to federal service as the director of FedRAMP heralds a new chapter for the program. With a clear mandate for modernization and a commitment to addressing the challenges faced by federal agencies in adopting cloud technologies, Waterman is poised to make a significant impact in the realm of cloud security. As the program continues to evolve, stakeholders will be watching closely to see how Waterman’s leadership shapes the future of FedRAMP and its role in securing federal cloud services.