The stability + the large budgets are 100% the only reason people stomach FedRAMP.
I've seen one company go in before getting a sponsor agency, and they got their SaaS environment built and certified as FedRAMP Ready (and listed), but never actually got an agency customer and didn't go the JAB route, and all the money they spent went down the drain.
It's really tough to justify FedRAMP if you don't have the political connections to get a sponsor, and that keeps the space nepotistic and stagnant (as you said).
For anyone wondering what JAB means, it's a joint board that blesses certain vendors, cloud offerings, and other software/tech products. If you don't get a Provisional Authorization to Operate (P-ATO) from the JAB, you're SOL. As a small software business owner, it's such a frustrating and anti-competitive experience.
The US's runaway defense spending isn't just pricey missiles, planes, and salaries; a big chunk is now software. It's a subtle issue, though, and I have yet to hear any politician address it meaningfully.
I've seen one company go in before getting a sponsor agency, and they got their SaaS environment built and certified as FedRAMP Ready (and listed), but never actually got an agency customer and didn't go the JAB route, and all the money they spent went down the drain.
It's really tough to justify FedRAMP if you don't have the political connections to get a sponsor, and that keeps the space nepotistic and stagnant (as you said).