A security clearance granted after a security assessment conducted by a Designated Approving Authority (DAA). Cloud Service Providers for CWS-CARES must have an ATO compliance rating of Medium from the DAA, who is The Federal Risk and Authorization Management Program (FedRAMP). The CWS-CARES project uses a fully cloud based solution, and the accompanying System Security Plan (SSP) have defined a set of controls required to secure the system data. The Fed Ramp Moderate security level meets or exceeds these requirements, so any CSP being used for this project must have an active FedRAMP Moderate ATO.