This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.
BMC Helix Capacity Optimization
U.S. FedRAMP offerings
BMC Helix services for the Federal Risk and Authorization Management Program (FedRAMP) are designed to comply with U.S. federal agency-specific processes for assessing and authorizing federal cloud computing products and services. FedRAMP consists of a subset of National Institute of Standards and Technology Special Publication (NIST SP) 800-53 security controls specifically selected to provide protection in cloud environments. BMC's FedRAMP certification is defined for the Federal Information Processing Standards (FIPS) 199 Moderate impact level. The FedRAMP services are staffed by U.S. personnel in U.S. data centers.
BMC obtained its FedRAMP authority to operate (ATO) authorization in April of 2016. Led by the SaaS Chief Information Security Officer, the FedRAMP team works continually to insure the latest releases of Helix applications and supporting components meet the compliance standards set by the FedRAMP program. FedRAMP testing is conducted annually by a third-party. BMC offers the following services with the ATO:
- BMC Helix ITSM
- BMC Helix Digital Workplace Basic
- BMC Helix Digital Workplace Advanced
- BMC Helix Custom Applications
- BMC Helix Premium Connector
- BMC Helix Business Workflows
- BMC Helix Multi-Cloud Service Management