Against popular beliefs and press releases from Microsoft and/or AWS, FedRAMP *DOES NOT* imply a system is "secure". Don't believe me? Read the FedRAMP CONOP. (http://tinyurl.com/op6lz2o). You'll notice the CONOP doesn't state a CSP is "secure" just because the system has been reviewed for compliance. FedRAMP is all about ensuring a cloud solution is assessed and the results are shared. This makes it easier for the gov't to procure CSP services and make risk based decisions. Don't be fooled by the marketing material.

Two suggestions: First, a cheap way of synchronizing files is with MS Sync Toy. The laptop user can simply run the sync at a predetermined time. A more complex solution is to run Symantec's BackupExec Desktop and Laptop (DLO) option. DLO is geared specifically for ensuring data on the desktop/laptop is protected and stored in on an enterprise server.