NIST releases automation-friendly security and privacy assessment procedures
The agency developed an online comment tool to release future controls and assessment procedures concurrently to keep pace with evolving cyber threats.
Advertisement
Open Security Controls Assessment Language (OSCAL)
FedRAMP eyes .govCAR for other authorization applications
The program management office hopes .govCAR will streamline the security authorization process.
FedRAMP just automated checking security authorization packages for completeness
Cloud vendors should be able to get their hands on the XML-automated validations next week.
Agency reuse of FedRAMP-approved cloud products climbs with automation
Also: an update on the fate of the FedRAMP Authorization Act in the Senate
FEMA working to clarify cyber controls
Only then can the agency use automation for compliance, according to its CTO.
FedRAMP cloud security requirements under revision
The program management offices is aligning security impact levels with new NIST guidance on security and privacy controls.
Advertisement
Agency reuse of cloud services on the rise during pandemic
FedRAMP has proven critical to agencies like the State Department that are increasing their reliance on the cloud to operate in a time of telework.
TTS director shares plans to automate, improve FedRAMP
The Center for Cybersecurity Policy and Law released recommendations to streamline the program that Anil Cheriyan said is agency will consider.