FedRAMP Approval for BMC Helix

Version 1
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    BMC Helix Capacity Optimization



    U.S. FedRAMP offerings


    BMC Helix services for the Federal Risk and Authorization Management Program (FedRAMP) are designed to comply with U.S. federal agency-specific processes for assessing and authorizing federal cloud computing products and services. FedRAMP consists of a subset of National Institute of Standards and Technology Special Publication (NIST SP) 800-53 security controls specifically selected to provide protection in cloud environments. BMC's FedRAMP certification is defined for the Federal Information Processing Standards (FIPS) 199 Moderate impact level. The FedRAMP services are staffed by U.S. personnel in U.S. data centers.


    BMC obtained its FedRAMP authority to operate (ATO) authorization in April of 2016. Led by the SaaS Chief Information Security Officer, the FedRAMP team works continually to insure the latest releases of Helix applications and supporting components meet the compliance standards set by the FedRAMP program. FedRAMP testing is conducted annually by a third-party. BMC offers the following services with the ATO:

    • BMC Helix ITSM
    • BMC Helix Digital Workplace Basic
    • BMC Helix Digital Workplace Advanced
    • BMC Helix Custom Applications
    • BMC Helix Premium Connector
    • BMC Helix Business Workflows
    • BMC Helix Multi-Cloud Service Management 
    This information is listed in the docs:    https://docs.bmc.com/docs/display/public/helixsubscriber/BMC+Helix+services+overview


    Article Number:


    Article Type:

    Product/Service Description

      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles