October 15, 2024 - San Francisco, CA - GitHub, the most widely adopted Copilot-powered developer platform, is building on its commitment to security by announcing today it will pursue Federal Risk and Authorization Management Program (FedRAMP) Moderate authorization to meet extended compliance needs of the US federal government. GitHub Enterprise Cloud is currently FedRAMP authorized (LI-SaaS, SOC2 type 2, ISO 27001).  

“Security is deeply embedded into everything GitHub does. By pursuing FedRAMP Moderate for GitHub Enterprise Cloud, we will further enhance our commitment to security for all of our customers, including those in highly regulated industries, and enable even more to maximize their innovation potential with GitHub while meeting their unique security and risk management requirements,” said Alexis Wales, Chief Information Security Officer. 

More than 100 million developers and 90% of Fortune 100 companies, as well as governments around the world, use GitHub to build and help secure software. GitHub Enterprise Cloud offers a robust platform designed to enhance productivity, collaboration, and agility in software development and will now pursue FedRAMP Moderate authorization. Enhancing GitHub Enterprise Cloud’s compliance with FedRAMP Moderate authorization will expand access to GitHub and bring even more assurance to customers who are in or service highly regulated industries, like the federal government. Meanwhile, GitHub Enterprise Cloud’s current LI-SaaS authorization allows customers to continue to leverage the platform with a FedRAMP authorization while safeguarding their code and sensitive data.