Canonical FrameworkCompliance & AuditHigh

FedRAMP High

FedRAMP High control-mapping starter for federal cloud workloads using the high-impact Rev. 5 baseline. It provides configurable gateway controls and evidence fields for relevant access, audit, encryption, and configuration topics; media, physical, assessment, and authorization controls remain outside the gateway.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

US

References

4 references

Mapped Control Domains

8 mapped domains

Deployment

Sovereign Region, Fully Air-gapped

Referenced Frameworks, Standards & Obligations

FedRAMP Authorization Act (44 U.S.C. §§ 3607-3616)FedRAMP Rev. 5 High BaselineNIST SP 800-53 Rev. 5NIST SP 800-53B

Mapped Control Domains

Access Control
Audit Logging
Incident Response
Data Encryption
Vulnerability Management
Configuration Management
Media Protection
Physical Security

Deployment profiles

Sovereign Region
Fully Air-gapped

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.