MuleSoft Government Cloud is FedRAMP Authorized!

August 26 2019

0 comments
cloud computing united states concept

We’re excited to announce that MuleSoft Government Cloud has officially completed its Federal Risk and Authorization Management Program (FedRAMP) Authorization process, and is now available! 

With this authorization, MuleSoft is delivering on its commitment to our government customers by providing a FedRAMP-compliant environment for Anypoint Platform, the only solution in the Gartner Magic Quadrant as a leader for both Enterprise Integration Platform as a Service (iPaaS) and Full API Lifecycle Management.  

What is MuleSoft Government Cloud?

MuleSoft Government Cloud allows agencies to deploy Anypoint Platform in a FedRAMP Authorized, cloud-based environment, where IT teams can rapidly design, develop, and manage APIs and integrations to connect cloud and on-premises applications all from a single, unified platform. 

Why move your integrations to the cloud? 

In response to the federal government’s Cloud Smart initiative, government agencies are pursuing strategies to move to the cloud at an accelerated rate. Doing so requires a massive agency-wide undertaking: Moving on-premise applications, data, and workloads to public or private cloud environments, and adopting SaaS technologies like Salesforce, ServiceNow, and Workday.

For many government IT teams, integration has emerged as a stumbling block, preventing government entities from realizing the benefits of moving to the cloud. While a growing number of applications adopted by government agencies are in the cloud, the underlying integration technologies connecting these applications are still based on-premises. This means government IT teams still spend time provisioning and maintaining infrastructure to ensure that their middleware doesn’t become a performance bottleneck for their applications.

Existing integration options focus on point-to-point approaches that can’t scale

Existing integration options, either on-premises or cloud-based, have focused on point-to-point integration approaches that add significant long-term costs and resources necessary to manage and maintain. Building custom code integrations makes it difficult to gain full visibility and management into all of the integrations powering mission-critical services, which in turn adds significant technical debt to IT teams already working longer hours to manage the increasing requests from constituents and departments alike. 

MuleSoft’s API-led approach accelerates IT modernization and cloud adoption

The need for government agencies to migrate away from tightly-coupled monolithic systems is well documented. The Federal CIO Council even went as far as to conclude that “the lack of developer platforms and services available to departments and agencies is a problem that will only become more acute with each passing year as the need for APIs supporting the delivery of web and mobile applications continues to grow in importance.” 

For government agencies to effectively modernize their IT infrastructure and adopt more cloud-based technologies, we recommend the implementation of an API strategy that decouples on-premises system data and business logic from system-specific complexity, and intermediates between on-premises applications, cloud infrastructure services, and SaaS applications. Such an approach enables applications to maintain uninterrupted access to the same data and services that exist on-premises as they are moved to the cloud. 

By standardizing access to IT assets through APIs, organizations are provided with the ability to easily secure and govern access. It also future-proofs the organization’s deployment architecture by enabling applications to be more easily migrated across clouds, reducing the risk of IaaS vendor lock-in and enabling quicker deployment across multiple environments.

MuleSoft Government Cloud: FedRAMP Authorized environment for our industry-leading API management and integration platform

To address growing government integration and API demands, MuleSoft has made a company-wide investment in pursuing FedRAMP Authorization for our cloud-based deployment environment, MuleSoft Government Cloud.

MuleSoft now offers an iPaaS technology that has received a FedRAMP Authorization by a federal agency. This authorization reflects our commitment to providing cloud integration capabilities to federal government customers. 

With a FedRAMP-Authorized iPaaS solution, government IT teams can use APIs and out-of-the-box (OOTB) connectors to quickly connect any system, whether cloud or on-premises, all from one platform. Using APIs and connectors available on our iPaaS platform eliminates the learning curve needed to custom connect end systems or hours dedicated to building custom code to tightly couple applications together. 

By applying this standardized approach to connecting end systems together, IT teams gain visibility into the entire network of connected services from one central location. Agencies can monitor all APIs and integrations running in the cloud and take corrective action where necessary on a user-friendly interface. This centralized visibility allows for rapid identification of issues and quicker response times, while also making it easier to adopt best practices across the enterprise. This could be anything from deploying integrations themselves or maximizing the efficiency and overall usage of APIs and templates.

Security is at the heart of MuleSoft Government Cloud

While many security controls included in FedRAMP requirements were already included in MuleSoft’s Anypoint Platform, we enhanced our Government Cloud environment and policies to exceed government requirements. Key examples include:

  • Federal Information Processing Standards (FIPS 140-2) compliant hardware and software encryption.
  • Significant enhancements in physical and logical security based on FedRAMP and NIST 800-53 requirements.
  • Extending TLS 1.2 encryption end-to-end. In addition to externally, we internally have an encrypted path where “man in the middle” attacks are blocked.
  • Hardening of our instances to CIS benchmarks and STIGs standards.

More than 100 government agencies already use MuleSoft’s Anypoint Platform deployed on-premises to build their mission-critical applications. We look forward to supporting government migration to cloud-based services with the launch of MuleSoft Government Cloud.

Learn more about how MuleSoft can help government agencies by checking out our whitepaper, viewing a demo of our new Government Cloud or contacting us at Governmentcloud@mulesoft.com.



We'd love to hear your opinion on this post