Article

Zendesk is FedRAMP authorized

By Chris Weiskirch, Manager, security compliance

Published May 20, 2020
Last modified May 20, 2020

Zendesk takes security very seriously—just ask the Fortune 100 and Fortune 500 companies that trust us with their data. We use a combination of enterprise-class security features and comprehensive audits of our applications, systems, and networks to ensure that your data is always protected, which means every customer can rest easy—our own included. Today, we are thrilled to announce that Zendesk has obtained our signed Authority to Operate (ATO) letter from the General Services Administration (GSA) and official FedRAMP Tailored authorization on the FedRAMP Marketplace. This achievement will allow government agencies and their affiliates to use Zendesk’s customer service and engagement platform (including Support, Guide and Explore products) with confidence that our platform meets the Low Impact Software-as-a-Service (LI-SaaS) baseline of security standards.

What is FedRAMP and FedRAMP Tailored?

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. Cloud service providers who want to offer their products and services to the US government must demonstrate FedRAMP compliance.

FedRAMP Tailored was developed to support industry solutions that are low risk and low cost for agencies to deploy and use. The FedRAMP Tailored framework defines a minimum set of security control requirements and lowers the barrier to entry for cloud software providers interested in securing FedRAMP Authorization. It provides government agencies with the agility to leverage valuable industry services while maintaining appropriate security levels. For more information, see the FedRAMP Tailored website.

What is the impact to our customers?

Customers working in the public sector can use Zendesk in a FedRAMP-compliant manner. An agency Authorizing Official (AO) can leverage the Zendesk FedRAMP Security package to review supporting documentation and make their own risk-based decision to grant an Agency Authority to Operate (ATO) to Zendesk. US Government agency customers can request access to the Zendesk FedRAMP Zendesk Security package by completing a Package Access Request Form and submitting it to info@fedramp.gov, or submitting a request to fedramp@zendesk.com.

For more information about FedRAMP, please contact our team at fedramp@zendesk.com