According to a June 3, 2015 FedScoop story, the Office of Management and Budget has circulated draft revisions to the government-wide policy governing information resources management. Some agency executives say that these revisions could add unnecessary layers of bureaucracy to an already lengthy and costly cloud certification process
Specifically, agency officials are concerned that proposed revisions to Circular A-130 could make obtaining a federal cloud authorization an even lengthier and more costly process.
Under the FedRAMP process, agencies are responsible for conducting privacy assessments once the data that is being moved to the cloud has been identified. But, in interviews, officials said even the privacy committee of the CIO Council has been slow to move on critical issues, taking nearly six months to decide which privacy controls should be the responsibility of the cloud provider and which should be the responsibility of the agency.
You can read the full story here: OMB policy change could cause headaches for FedRAMP