FedRAMP – How the Feds Plan to Manage Cloud - Hacker Halted

More documents

Recommendations

Info

SECURITY AUTHORIZATION PROCESS CSP completes initial assessment 3PAO completes assessment JAB reviews assessment & issues PATO CSP completes initial assessment CSP and 3PAO draft required deliverables Federal agency issues ATO CSP • Security System Plan • Security Assessment Plan • Plan of Action and Milestones • Supplier’s Declaration of Conformity 3PAO • Security Assessment Report
3PAO ACCREDITATION • Accredit Third Party Assessors for independence/competencies • Publish and maintain list of accredited 3PAOs for CSPs to choose • BrightLine • Coalfire Systems • Homeland Security Consultants • SRA International, Inc
Page 1 and 2: How the Feds Plan to Manage Cloud R
Page 3: “Organizations that look at the C
Page 6 and 7: 29% of consumers performed a securi
Page 8: SCOPE AND CONTROL AMONG SERVICE MOD
Page 11 and 12: FedRAMP • FedRAMP is mandatory fo
Page 13 and 14: Governance
Page 15 and 16: Joint Authorization Board Issues Pr
Page 17 and 18: Cross-agency communication Vet cont
Page 19 and 20: Data feed criteria Threat notificat
Page 21 and 22: KEY ORGANIZATIONS • CSP • Imple
Page 23: SECURITY ASSESSMENT • Based on FI
Page 27 and 28: PRIVATE-SECTOR CHALLENGES • Marke
Page 29 and 30: FedRAMP is being watched by provide
Page 31 and 32: RESOURCES • Cloud Computing Overv

FedRAMP – How the Feds Plan to Manage Cloud - Hacker Halted

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?