Press February 15, 2024

SecurityScorecard Achieves StateRAMP®

U.S. state and local government agencies to adopt ‘A to F’  letter grades to measure and improve cybersecurity resilience.

New York, Feb. 13, 2024 SecurityScorecard, the global leader in security ratings, announced today that it achieved State Risk and Authorization Management (StateRAMP) Authorization. As a StateRAMP-Authorized provider, state and local agencies can now leverage SecurityScorecard’s standardized approach for measuring cybersecurity with letter grades based on cyber resilience. 

SecurityScorecard security ratings are a recognized and trusted source of objective, data-driven metrics for cybersecurity performance across global public sector agencies, including the Transportation Security Administration, Canadian Centre for Cyber Security, Department of Homeland Security, National Association of Counties, and U.S. Conference of State Bank Supervisors.

Government agencies use SecurityScorecard to identify and address supply chain vulnerabilities. SecurityScorecard empowers hundreds of public sector organizations to deliver their missions and be more resilient. In 2023, SecurityScorecard also attained FedRAMP® Ready designation. 

Brendan Peter, VP of Global Government Affairs at SecurityScorecard, stated: “The White House noted that the adoption of ‘A, B, C, or D’ security ratings by government agencies was a ‘game-changer.’ Our security ratings provide a vital roadmap to assess risk, enhance transparency, and ultimately build a more resilient and secure digital ecosystem for all.”

StateRAMP covers each state’s individual needs, making it possible for organizations like SecurityScorecard to meet the complex security cloud requirements for all states. This certification provides agencies with a transparent, cost-effective way of selecting a cloud provider that aligns with their mission. 

The StateRAMP process for verification relies on meeting the minimum-security requirements built on the industry-accepted National Institute of Standards and Technology (NIST) Special Publication 800- 53, Security and Privacy Controls for Information Systems and Organizations, and an independent audit conducted by a third-party assessment organization (3PAO).

Visit the SecurityScorecard website for more information on SecurityScorecard for StateRAMP and FedRAMP. For additional details related to the SecurityScorecard StateRAMP package, please visit the StateRAMP authorized products list.

About SecurityScorecard

Funded by world-class investors, including Evolution Equity Partners, Silver Lake Partners, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings, response, and resilience, with more than 12 million companies continuously rated. 

Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard’s patented security ratings technology is used by over 25,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. 

SecurityScorecard makes the world safer by transforming how companies understand, improve, and communicate cybersecurity risk to their boards, employees, and vendors. SecurityScorecard achieved the Federal Risk and Authorization Management Program (FedRAMP) Ready designation, highlighting the company’s robust security standards to protect customer information, and is listed as a free cyber tool and service by the U.S. Cybersecurity & Infrastructure Security Agency (CISA). Every organization has the universal right to its trusted and transparent Instant SecurityScorecard rating. For more information, visit or connect with us on LinkedIn.

Media Contact

Ashley Nakano
[email protected]