DroneDeploy’s journey toward FedRAMP-aligned security

Public‑sector organizations increasingly rely on reality capture and analytics to support infrastructure inspection, construction oversight, facilities management and disaster response.

To support these needs, DroneDeploy is taking the next step in maturing its security program in alignment with FedRAMP 20x.

Why we’re investing in FedRAMP-aligned security

DroneDeploy has engaged both a specialized FedRAMP advisory firm and an accredited assessment organization (3PAO) to further strengthen our security controls, processes and documentation. This work is designed to align our platform security with the expectations of U.S. government agencies and contractors that operate in regulated and security-sensitive environments.

This initiative reflects DroneDeploy’s long‑term commitment to supporting public‑sector customers as they scale reality capture across critical infrastructure and operations.

“Our customers build the homes we live in, grow the food we eat, and power the technology we use. They rely on our security to ensure the confidentiality, integrity, and availability of their mission critical data. We’re excited to build trust with our public sector customers by working to align with FedRAMP requirements and continue expanding our security certifications over time.“ added Joseph Mente, Senior Director of DevOps, IT & Security at DroneDeploy

What we’re doing to build toward FedRAMP-aligned security

Working with our advisory and assessment partners, DroneDeploy is:

• Mapping and enhancing security controls, risk management practices, and system boundaries against FedRAMP‑aligned requirements and NIST‑based best practices
• Strengthening governance, documentation, and technical safeguards to better support agencies and partners operating under federal security standards

These efforts are intended to position DroneDeploy to support FedRAMP‑driven use cases as public‑sector needs continue to evolve.

“We’re treating FedRAMP‑grade security as a design target for how we build and operate our platform,” said Ashutosh Agrawal, Senior Director of Risk & Compliance at DroneDeploy. “That means investing in strong fundamentals, governance, risk management, and technical controls while being thoughtful about how formal certifications best serve our customers.”

Building on a strong security foundation

This work builds on DroneDeploy’s existing security program and ongoing investments to protect customer data across regulated and high‑trust environments. Used on over 3 million sites in 180 countries, the world’s largest companies from construction and energy to infrastructure and agriculture, use DroneDeploy to document work in place, verify quantities, resolve disputes faster and keep projects on time, on budget and safe.

As the public sector continues to adopt reality capture and analytics, DroneDeploy is committed to evolving its security posture in step with customer and regulatory expectations.

Learn more

If you’d like to learn more about DroneDeploy’s security program or discuss public‑sector use cases, please reach out to [email protected].

‍