OpenAI available at FedRAMP Moderate

OpenAI has achieved FedRAMP 20x Moderate authorization(opens in a new window) for ChatGPT Enterprise and API Platform, marking an important milestone in making frontier AI available to U.S. government agencies with the security, privacy, and governance expectations required for federal work. Public servants should not have to wait for secure access to the same advanced AI capabilities transforming the rest of the economy. Agencies are already leveraging AI to expedite permitting, draft resident communications, advance frontier science, summarize complex information, support public health analysis, accelerate software development, translate services, and help employees find answers across policy and program material. This FedRAMP 20x Moderate authorization expands the set of missions that can use OpenAI’s managed products, subject to each agency’s policies and authorization decisions. Thanks to FedRAMP 20x, this milestone did not require choosing between speed and rigor. The 20x process moves authorization toward cloud-native security evidence, Key Security Indicators, automated validation, and ongoing visibility into how a cloud service offering is operated. FedRAMP 20x, announced by GSA in March 2025, created a faster path for cloud service providers to demonstrate secure configurations and practices. OpenAI’s Security and Engineering teams worked through KSI implementation, evidence collection, validation, review cycles, and assessment materials to bring ChatGPT Enterprise and API Platform through the 20x Moderate path. Our close collaboration with the FedRAMP team has been essential to reaching this milestone. Their partnership helped translate the promise of FedRAMP 20x into a practical, security-focused authorization path that moves at the speed modern government technology requires. Agencies will no longer need to choose between cutting-edge AI and trusted deployment environments. For federal agencies, FedRAMP 20x Moderate opens a clearer path to adopt OpenAI’s managed AI products for internal, operational, and mission-support use cases. Program teams can use ChatGPT Enterprise to accelerate research, drafting, translation, analysis, and knowledge work. Technical teams can use the OpenAI API to build AI features into existing systems, copilots, case management tools, and citizen service workflows. Agencies can now access our most powerful models, including GPT‑5.5, in our FedRAMP environment. Additionally, agencies can soon access their Codex Cloud environment via their FedRAMP ChatGPT Enterprise workspace and utilize the Codex app via integration with FedRAMP account management and backend infrastructure. For security, privacy, and procurement teams, the authorization creates reusable FedRAMP authorization data for agency review. Agencies can evaluate the cloud service offering, its Minimum Assessment Scope, shared-responsibility expectations, supported features, and supporting evidence and validation materials in OpenAI’s Trust Portal(opens in a new window) without starting from scratch. Agencies can find ChatGPT Enterprise and API Platform in the FedRAMP Marketplace(opens in a new window) and contact OpenAI at fedramp@openai.com for package access. Agencies can engage OpenAI directly, procure through Carahsoft, OpenAI’s authorized public sector reseller, or evaluate other acquisition paths that align with their requirements. OpenAI can help agencies identify the right deployment and acquisition path; teams can use our sales form(opens in a new window), email gov-gtm@openai.com, or work with their OpenAI account team for support. OpenAI will continue expanding…