Telos Xacta cyber platform achieves FedRAMP High authorization

The cybersecurity company Telos Corporation announced on April 15, 2025, that its Xacta platform has achieved FedRAMP High authorization, a critical milestone for providing cloud services to U.S. federal agencies handling highly sensitive data. The authorization was granted by the Joint Authorization Board (JAB), which includes representatives from the Department of Defense, Department of Homeland Security, and the General Services Administration. This achievement allows Telos to offer its enterprise risk management and compliance automation software to agencies dealing with national security systems, law enforcement data, and other protected information that requires the highest level of security assurance. FedRAMP, or the Federal Risk and Authorization Management Program, is a government-wide program that standardizes security assessment, authorization, and continuous monitoring for cloud products and services. The 'High' impact level is the most stringent authorization within the program, designed for systems where the loss of confidentiality, integrity, or availability could have severe or catastrophic adverse effects on organizational operations, assets, or individuals. Achieving this level requires a rigorous third-party assessment and demonstrates that the Xacta platform meets over 400 security controls outlined by the National Institute of Standards and Technology (NIST). This authorization significantly expands Telos's addressable market within the federal government, positioning Xacta as a key tool for agencies migrating legacy systems to cloud environments while managing complex compliance requirements. The platform automates workflows for security control assessment, continuous monitoring, and authorization documentation, helping agencies accelerate their cloud adoption timelines. In a statement, Telos CEO John Wood emphasized that this achievement reinforces the company's commitment to supporting the federal government's digital transformation and cybersecurity modernization initiatives, particularly as threats to critical infrastructure and sensitive data continue to evolve.