Update on Atlassian FedRamp, October 2023

Atlassian has announced that they are making significant progress with FedRAMP updates, and are on track to achieve their ‘In Process’ designation through agency authorization by Q2 2024 and obtain their ‘Moderate Authorization to Operate’ designation by Q1 2025. Additionally, they have expanded FedRAMP coverage to include Jira Service Management Cloud, now facilitating seamless collaboration across three of their primary cloud products for your teams.

Here are key updates that were previously announced:

• Implemented a substantial portion of the FedRAMP Moderate control requirements.
• Expanded initial offering to include Jira Service Management.
• Enforced top-tier NIST security standards throughout the platform.

What you need to know about these key updates

Do you really need FedRAMP Moderate?

Evaluate data components and confirm the necessary level of control is in place.

What to do in the meantime?

End of Support for Atlassian Server products is imminent, with only 5 months left. While FedRAMP integration into the cloud is growing regularly, we understand that many of you need a solution sooner. Atlassian’s self-managed enterprise solution, Data Center, remains a vital option, and will continue to provide the best support and security for your teams during our ongoing work to obtain FedRAMP ATO.

And now transitioning to Data Center can quick if you don’t need a clustered deployment – the new self-managed enterprise edition lets you turn your Server instance into a Data Center instance with just the purchase of a new license key. You can make the switch in a matter of minutes.

Other options include:

• Leverage commercial cloud services, including AWS commercial in US Regions where FedRAMP is available.
• Strategically plan for future cloud migration by implementing governance practices, conducting plugin assessments, and ensuring your systems are ‘cloud-ready.’
• Consider a hybrid approach if necessary, depending on any existing restrictions or limitations.

What isn’t covered?

• Items excluded from the scope.
• Not subject to ITAR/EAR regulations.
• The status of plugins remains uncertain.

Oxalis can offer highly effective support

Reach out to Oxalis and embark on a journey towards safeguarding your data, ensuring regulatory compliance, and enhancing operational excellence in a regulated business landscape. Let us guide you through these essential steps

1. Identify and inventory your data, as well as address compliance requirements.
2. Design or redesign your business processes to align with compliance standards.
3. Set up a high-compliance data center, including options such as high availability (HA) configurations and government cloud integration.
4. Establish governance protocols to streamline future transitions and moves.

Initiate your journey with Oxalis and promote effortless teamwork among your teams. Don’t miss out on this opportunity to align your organization with cutting-edge, compliant, and secure technology. Join us in shaping the future of secure collaboration.

Contact Us

Ready to fortify your data security, ensure compliance, and streamline your operations? Contact us today and let’s take the first step together in identifying, designing, and establishing a high-compliance infrastructure. Your journey towards data resilience begins now. Oxalis is here to guide you every step of the way. Our team can provide you with the expert guidance and solutions you need.