FedRAMP Authorized — Moderate Impact
Splunk Cloud for Government by Cisco (Splunk). 6 compliance features verified.
Splunk Cloud for Government
by Cisco (Splunk)
Impact Level
Moderate
Status
Authorized
Pricing
enterprise
Authorization Date: February 14, 2020 | Sponsoring Agency: DHS
Overview
Splunk Cloud for Government is a FedRAMP Moderate authorized SIEM and observability platform. It provides log management, security analytics, and threat detection using machine learning. The platform enables security teams to investigate incidents and demonstrate compliance with audit trails.
Key Features
Certifications & Authorizations
Deployment Options
NIST 800-171 Compliance Coverage
How to Procure Splunk Cloud for Government for Defense Contracts
Splunk Cloud for Government is available through GSA MAS Contract 47QSWA18D0006 under SIN 518210C (IT Services) and SEWP V Contract NNG15SC03B. Government pricing typically reflects 20-30% discount from commercial rates with volume tiers starting at 100GB/day ingestion. The authorization boundary includes Splunk's managed infrastructure, search heads, indexers, and deployment servers but excludes customer forwarders and data sources. Contracting officers must approve the Customer Responsibility Matrix (CRM) detailing shared security controls, data handling agreements specifying CUI markings, and integration points with existing SIEM infrastructure. Standard procurement timeline requires 45-60 days including security review, ATO documentation preparation, and vendor onboarding. For CMMC assessments, include Splunk Cloud within your assessment boundary as a critical security process supporting AU (Audit and Accountability) and SI (System and Information Integrity) control families. Document API integrations, log forwarding mechanisms, and access control inheritance from your identity provider. Ensure your SSP addresses how Splunk's FedRAMP controls satisfy your Level 2 CMMC requirements, particularly for incident response capabilities.
Compliance Cross-References
Splunk Cloud for Government's FedRAMP Moderate authorization directly supports DFARS 252.204-7012 compliance by providing adequate security for CUI processing and storage within authorized cloud infrastructure. For DFARS 252.239-7010 cloud computing requirements, the platform meets government data location mandates through AWS GovCloud deployment and provides required incident reporting capabilities. The authorization satisfies multiple NIST 800-171 control families: AC (Access Control) through RBAC and MFA integration, AU (Audit and Accountability) via comprehensive logging and retention, SC (System and Communications Protection) through encrypted data transmission and storage, and SI (System and Information Integrity) via threat detection and malware analysis capabilities. For CMMC Level 2 compliance, Splunk directly supports Asset Management (AM.L2-3.4.1), Audit and Accountability (AU.L2-3.3.1 through 3.3.9), and Incident Response (IR.L2-3.6.1 through 3.6.3) domains. The DoD Cloud Computing SRG IL4 certification ensures the platform meets security requirements for moderate impact systems processing CUI, with documented control inheritance reducing your assessment scope.
Defense Contractor Use Case
Defense contractors deploy Splunk Cloud Government as their SIEM solution for centralized log management, security monitoring, and generating compliance reports required for CMMC and NIST 800-171.
Related Products
More Security Products
Frequently Asked Questions
What is the FedRAMP authorization level for Splunk Cloud for Government?
Splunk Cloud for Government is authorized at the FedRAMP Moderate impact level, with authorization granted on 2020-02-14 sponsored by DHS. The FedRAMP Moderate baseline includes approximately 325 security controls covering confidentiality, integrity, and availability.
Can defense contractors use Splunk Cloud for Government for CUI?
Splunk Cloud for Government is authorized at the FedRAMP Moderate baseline. While FedRAMP Moderate covers a broad range of government data, defense contractors handling CUI should carefully evaluate whether Moderate controls meet their specific DFARS 252.204-7012 and NIST 800-171 requirements. Some CUI categories may require FedRAMP High authorization depending on the sensitivity of the data and contract requirements.
How does Splunk Cloud for Government pricing compare to commercial?
Splunk Cloud for Government government pricing is typically negotiated on an enterprise basis and may differ from commercial list prices. Government and defense contractor pricing often includes compliance overhead that can make it 15-30% higher than commercial equivalents. However, volume discounts, GSA Schedule pricing, and multi-year commitments can help offset these costs. Contact Cisco (Splunk) directly or check GSA Advantage for current government pricing.
Browse All FedRAMP Authorized Tools
Search and filter 80+ FedRAMP authorized products for your defense contracting needs.
Open FedRAMP FinderTrack Splunk Cloud for Government FedRAMP compliance updates with AI-powered intelligence
Signals matches SAM.gov opportunities to your profile, monitors regulatory changes, and alerts you before competitors. Free for 90 days.
Start Free — 90 Days