FedRAMP compliance is required of federal agencies operating in a cloud environment. Esri is currently the only cloud service provider with GIS expertise to reach that level of compliance. Other users can benefit from the rigorously documented and reviewed processes to meet their own security needs. These processes are based on National Institute of Standards and Technology (NIST) controls, which map to the International Standards Organization (ISO) 27001 standards.
To learn more about FedRAMP, visit https://www.fedramp.gov/about-us/about/.