US government certifications and accreditations

Whether you're using Elastic to fulfill US government requirements or need to meet key standards before you can launch your deployment, our Elastic public sector experts are ready to help. Contact us for more information on any of the following compliance issues, including seeking authorization to operate (ATO) in a regulated environment, hardening your deployment to meet security standards, or working toward complying with Risk Management Framework (RMF) guidelines.

Fulfilling requirements with Elastic

  • Risk Management Framework (RMF)
  • Cybersecurity Maturity Model Certification (CMMC)
  • ICD 503
  • ICS 500-27
  • NIST 800-53
  • Americans with Disabilities Act VPAT 2.0 for Section 508 Compliance
  • FIPS 140-2

Meeting accreditations for ATO Elastic

  • Air Force Approved Product List
  • DON Application and Database Management System (DADMS)
  • Security Technical Implementation Guide (STIG) for Elasticsearch
  • Security Requirement Guides (SRG) for Elasticsearch
  • Risk Management Framework (RMF)
  • U.S. Air Force Certificate To Field (CTF) 8.x ELK with X‑Pack
  • FedRAMP, C2S and C2E Deployments

Elastic Cloud is FedRAMP authorized at Moderate Impact level and is now generally available on AWS GovCloud. Learn more

Talk to an Elastic public sector expert

We’d be happy to help you learn more about achieving federal compliance with Elastic.