OSCAL and FedRAMP Automation

OSCAL and FedRAMP Automation

The current FedRAMP Authorization process is a struggle.  First, you must manage multiple regulatory standards and frameworks, which change over time. Second, regulatory standards and frameworks overlap in scope and can often conflict and be difficult to manage...
FedRAMP Cloud Service Providers and Services

FedRAMP Cloud Service Providers and Services

Google Cloud Platform (GCP) Google adopted its cloud infrastructure, Google Cloud Platform (GCP), to be compliant with FedRAMP. GCP earned a FedRAMP High authorization to operate (ATO) for several cloud products in a handful of locations and has uplifted the current...
FedRAMP Terminology

FedRAMP Terminology

Just like any compliance or set of regulations,  FedRAMP uses many acronyms and key terms to describe processes, standards, and regulations.  This article explains key terminology that is used in the FedRAMP framework.  You may already be familiar with some of these...