FSI-CSO-NOCMUSTAll frameworksImplementation guide coming soon

Notification of Changes

FedRAMP Security Inbox (FSI) · General Provider Responsibilities

Applies to: Providers

Who this applies to: Providers
Service class: All service classes
Force: MUST
Timeframe: No fixed timeframe

Reviewed implementation guidance for FSI-CSO-NOC is not published yet. The official source below remains complete and authoritative.

Notification

Notify FedRAMP via email: info@fedramp.gov

Official FedRAMP source

Verbatim from FedRAMP/rules

Providers MUST immediately notify FedRAMP of any changes in addressing for their FedRAMP Security Inbox by emailing info@fedramp.gov with the name and FedRAMP ID of the cloud service offering and the updated email address.

Defined terms in this requirement

Cloud Service Offering FedRAMP Security Inbox Provider

Change history

2026-05-04Initial reset for the Consolidated Rules for 2026 Public Preview.

Content provenance

Official requirement text is sourced from FedRAMP/rules . Boundera implementation guidance has not been fully reviewed for this item.