FedRAMP levels

Understand FedRAMP levels and baselines—High, Moderate, Low (20x), and LI-SaaS—plus who each applies to and how to prepare.

>

Your guide to FedRAMP levels

‍

This collection breaks down the full range of FedRAMP levels and baselines, including High, Moderate, Low (20x), and LI-SaaS, so you can understand how they differ and why each exists. You’ll learn which level applies to your product, the security requirements associated with each baseline, and what it takes to prepare for authorization.

‍

Whether you’re early in your FedRAMP journey or refining your approach, these articles help you choose the right path and plan next steps with clarity.

FedRAMP levels and baselines: All you need to know

FedRAMP High compliance: A step-by-step guide for organizations

Who needs FedRAMP Moderate, key requirements, and how to prepare

How to prepare for FedRAMP Low and the 20x pilot: Eligibility and requirements

FedRAMP LI-SaaS: Who needs it, requirements, and how to prepare

Explore more FedRAMP articles

Introduction to FedRAMP

What is FedRAMP? A 101 guide to the compliance and authorization process

Who needs to comply with FedRAMP?

FedRAMP 20x explained: New goals, challenges, and readiness steps

All about the FedRAMP Marketplace: A beginner’s guide

FedRAMP levels

FedRAMP levels and baselines: All you need to know

FedRAMP High compliance: A step-by-step guide for organizations

Who needs FedRAMP Moderate, key requirements, and how to prepare

How to prepare for FedRAMP Low and the 20x pilot: Eligibility and requirements

FedRAMP LI-SaaS: Who needs it, requirements, and how to prepare

FedRAMP requirements

FedRAMP requirements: A checklist guide for each baseline

Essential FedRAMP documentation map: SSP, SAP, SAR, POA&M

How to write a watertight FedRAMP System Security Plan (SSP)

Guide to navigating the FedRAMP authorization process

FedRAMP authorization costs: What to expect and how to budget

Continuous monitoring expectations after FedRAMP authorization: All you need to know

Additional resources

GovRAMP vs. FedRAMP: What are the similarities and differences?

FedRAMP vs. SOC 2: Key differences for cloud service providers

FedRAMP vs. CMMC: Key differences and similarities

Get started with FedRAMP:

Start your FedRAMP journey with these related resources.

FedRAMP Authorization Checklist cover image

FedRAMP Authorization Checklist

Here’s the step-by-step process to achieve FedRAMP authorization for the first time.

A book with the word FedRAMP on it.

The ultimate guide to FedRAMP: A requirements guide for authorization

Learn about FedRAMP authorization, from impact levels to compliance steps, to unlock opportunities with U.S. federal agencies.

Lessons learned from Vanta’s FedRAMP® 20x pilot program

A behind-the-scenes look at how Vanta navigated the FedRAMP 20x pilot.