open security controls assessment language

FedRAMP, NIST Release 1st Version of Open Security Controls Assessment Language

June 10, 2021 News, Technology Comments Off on FedRAMP, NIST Release 1st Version of Open Security Controls Assessment Language

The Federal Risk and Authorization Management Program (FedRAMP) office and the National Institute of Standards and Technology (NIST) have introduced a machine-readable standard that works to automate the preparation, authorization and reuse of commercial cloud offerings for the government sector. The FedRAMP office expects OSCAL to help vendors prepare and review system security plans faster

Dave Zvenyach: GSA Plans to Invest in FedRAMP Process Automation

June 3, 2021 News, Technology Comments Off on Dave Zvenyach: GSA Plans to Invest in FedRAMP Process Automation

Dave Zvenyach, director of the General Services Administration's (GSA) Technology Transformation Services (TTS) organization, said the agency is looking to modernize Federal Risk and Authorization Management Program (FedRAMP) processes with automation technology. Zvenyach noted that FedRAMP, which set a standardized assessment and certification approach for cloud offerings, generates nonlinear costs as the agency onboards more providers into the program.

FedRAMP’s Ashley Mahan on Increase in Cloud Services Reuse

October 20, 2020 News, Technology Comments Off on FedRAMP’s Ashley Mahan on Increase in Cloud Services Reuse

Ashley Mahan, director of the General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP), said that FedRAMP saw a 50 percent rise in government agencies reusing certified cloud services in fiscal year 2020 as those organizations continue to work to meet the telework requirements during the COVID-19 pandemic.

NIST, FedRAMP Developing Programming Language to Help Automate Cloud Security Assessments

October 9, 2020 Cybersecurity, News, Press Releases, Technology Comments Off on NIST, FedRAMP Developing Programming Language to Help Automate Cloud Security Assessments

The Federal Risk Authorization Management Program (FedRAMP) is working with the National Institute of Standards and Technology (NIST) to implement a universal programming language that can help accelerate cloud certification and drive automation in government operations. “What normally would take an assessor weeks to do, an OSCAL tool can perform in seconds,” said David Waltermire.

NIST Releases Update for Draft FedRAMP Controls Baseline Guide

June 18, 2020 News, Technology Comments Off on NIST Releases Update for Draft FedRAMP Controls Baseline Guide

The National Institute of Standards and Technology (NIST) has issued an updated version of its Open Security Controls Assessment Language (OSCAL) milestone that includes guidelines for control baselines and system security plans (SSP) for various hardware and software.

FedRAMP Announces Milestone in Authorization Process Automation

December 19, 2019 News, Technology Comments Off on FedRAMP Announces Milestone in Authorization Process Automation

The Federal Risk and Authorization Management Program has worked with industry and the National Institute of Standards and Technology to develop the Open Security Controls Assessment Language to help automate the authorization process.

Executive Gov

Tag Archives: open security controls assessment language

FedRAMP, NIST Release 1st Version of Open Security Controls Assessment Language

Dave Zvenyach: GSA Plans to Invest in FedRAMP Process Automation

FedRAMP’s Ashley Mahan on Increase in Cloud Services Reuse

NIST, FedRAMP Developing Programming Language to Help Automate Cloud Security Assessments

NIST Releases Update for Draft FedRAMP Controls Baseline Guide

FedRAMP Announces Milestone in Authorization Process Automation