PAGE www.fedramp.gov Quick Guide to the FedRAMP Readiness Process 1 August 2014 Presented by: FedRAMP PMO www.fedramp.gov.

Slides:



Advertisements
Similar presentations
Success Factors Recruitment Management
Advertisements

best practice project management methodology ©Platinum Services Group Limited What is XPRODi ?
Online Postgraduate Admissions Update for Postgraduate Forum – 22 January 2010 Kate Ward.
Brief introduction to Secondary Care SOAR users Last updated: 13 th December 2012.
Brief introduction to Primary Care (GP) SOAR users Last updated: 24 th August 2012.
Page 2 Agenda Page 3 History –Blue Print, 2000 –GIS Process 1.2, 2001 (training only) –GIS Process 2.0, (ITIL based - not implemented) –Supply/Demand.
WASTE MANAGEMENT ©2010 SciQuest USA Confidential 1 Powered by RFx User Guide.
Federal Risk and Authorization Management Program (FedRAMP) Lisa Carnahan, Computer Scientist National Institute of Standards & Technology Standards Coordination.
More CMM Part Two : Details.
PAGE Agency ATO Quick Guide 1 December 23,
Copyright – Disaster Resistant Communities Group - How To Conduct A Fire Drill.
(Project) SIGN OFF PROCESS June 21, 2010
AUDITS Process and Corrective Actions OIG RolesGAO ROLES – OIG –OIG Lead Auditor –OCFO – owner of MATS and Agency Audit Process –OEI AA – Designated OEI.
PAGE Agency ATO Quick Guide 1 May 1,
PAGE[classification marking] marking] FedRAMP Government Discussion Matt Goodrich, FedRAMP Director January 14,
On Site Review Process Office of Field Services.
Trademark Fee Cost Analysis TPAC Briefing June 9, 2009.
ESC/EN Engineering Process Compliance Procedures August 2002.
EPLC Deliverables Sherry Brown-Scoggins & Wanda Hall
Coaching for School Improvement: A Guide for Coaches and Their Supervisors An Overview and Brief Tour Karen Laba Indistar® Summit September 2, 2010.
STUDYLINK OVERVIEW FOR EDUCATION PROVIDERS Find the best way to finance your future August 2013.
The Graduate School URI Graduate School Application Decision Process EMT ApplyYourself WebCenter.
PMP® Exam Preparation Course
Do it pro bono. Competitor/Collaborator Analysis Service Grant The Strategy Management Practice is presented by Wells Fargo. The design of the Competitor/Collaborator.
ISO 9001: 2000 Certified Audit Process What to do.
1.  Describe an overall framework for project integration management ◦ RelatIion to the other project management knowledge areas and the project life.
What’s New in the QAD Learning Center? Bernadette Bagley, November 18, 2014 West Coast User Group.
PAGE Agency ATO Quick Guide 1 September 21,
SACS CASI Southern Association of Colleges and Schools/ Council on Accreditation and School Improvement
Project Kick-off Meeting Presented By: > > > > Office of the Chief Information Officer.
0 eCPIC Admin Training: OMB Submission Packages and Annual Submissions These training materials are owned by the Federal Government. They can be used or.
On Site Review Process Office of Field Services Last Revised 8/15/2011.
ECPIC Workflow Quick Guide: Event Subscriptions & Triggers Administrators can assign event subscriptions, which generate automatic, real-time notifications.
Inclusion: Effective Practices for All Students, 1e McLeskey/Rosenberg/Westling © 2010 Pearson Education, Inc. All Rights Reserved What.
Quality Education for a Healthier Scotland Overview of Appraisal Processes on SOAR for ALL roles associated with Academic Appraisals on SOAR (Primary and.
Researcher training for ACAP © Created by Isaac P. E. Mailleue Research Integrity Coordinator University of North Carolina at Greensboro September 2013.
Senior Service America’s SPARQ Transition Overview Module August 15, 2012.
How do You Fit within the Process? Roles and Responsibilities – Pre CAB (1/2) 1 Change Requestor Initiates the Change Request (CR) in Service-now Includes.
2011–2012 Holistic Rating Training Requirements Texas Education Agency Student Assessment Division.
Updated 12/9/2015 Hiring Manager Training Guide. Updated 12/9/2015 Table of Contents Introduction System Overview Review Applications Using Highlights.
Supplier Kickoff Presentation Presented by Computer Aid, Inc.
© 2016 University at Buffalo Click Training Safety Module University at Buffalo Office of the Vice President for Research and Economic Development Electronic.
© 2016 University at Buffalo Click Training Agreements Module University at Buffalo Office of the Vice President for Research and Economic Development.
UL/URC Meeting Friday, May 20, Agenda Project Updates Security Updates Demo of eRecruit Changes Training Updates Implementation Information May/June.
Alabama Non-Traditional High School Diploma Option Program (HSO)
SCC P2P – Collaboration Made Easy Contract Management training
Agency ATO Quick Guide September 21, 2015
Review, Revise and Amend from Procedures for State Board Policy 74
To the ETS – PNG Continuation: Online Training Course
A Guide for Managers for Professional Staff
CAEP Orientation: Newcomers
ERO Portal Overview & CFR Tool Training
APHE Editorial Process
Overview of the FEPAC Accreditation Process
Partnering with the Defense Acquisition University Equivalent Provider Application (EPA) Process Phase I - Details END NO YES Provider contacts an approved.
Project Team kick-off meeting
All Wales Safeguarding Procedures Review Project
What You Don’t Know About the QAD Learning Center
Click Training Agreements Module
ASSISTANCE DOGS INTERNATIONAL ACCREDITATION PROCEDURES 2018
A Guide for Professional Staff
How did we do it? Case examples from AIC
A Guide for Professional Staff
1 Stadium Company Network. The Stadium Company Project Is a sports facility management company that manages a stadium. Stadium Company needs to upgrade.
To the ETS – PNG Continuation: Online Training Course
(Project) SIGN OFF PROCESS MONTH DAY, YEAR
Project Kick-off <Customer Name> <Project Name>
CFR Enhancement Session
Click Training Safety Module
Using AIM (for Instructors)
Presentation transcript:

PAGE Quick Guide to the FedRAMP Readiness Process 1 August 2014 Presented by: FedRAMP PMO

PAGE What is the readiness process? The FedRAMP readiness process is used to determine a CSP’s eligibility for the Joint Authorization Board (JAB) Process Provisional Authorization process. To be eligible the CSP must: – Have an understanding of the FISMA and FedRAMP requirements and process – Be able to commit the resources needed to complete a FedRAMP assessment – Have the ability to implement the FedRAMP control baseline – Meet FedRAMP requirements for level of detail in documenting the control implementation 2

PAGE Readiness Process Roles CSP – Provide information about the cloud system, documentation and make updates in response to comments from FedRAMP – Learn about the FedRAMP process FedRAMP Readiness and Development Team – Review incoming applications and initiates contact with CSPs – Coordinate the readiness process – Perform a completeness check and reviews the CSP’s initial documentation – Provide comments and feedback on documentation to the CSP – Recommend to Director or Project Manager of whether to kick-off the full FedRAMP assessment FedRAMP Director / FedRAMP Manager – Make final decision of whether the CSP starts the full FedRAMP assessment 3

PAGE Readiness Process Overview The process is composed of three steps: CSP Interview Documents Review Kick-Off Decision 4

PAGE CSP Interview Process After receiving the CSP’s FedRAMP application, the FedRAMP Readiness and Development Team schedules an initial interview to: Answer questions and provide information about the FedRAMP JAB P-ATO process Learn about the system that the CSP is offering Gauge the CSP’s current knowledge of FedRAMP Determine the resources that the CSP is able to dedicate to a FedRAMP assessment Schedule CSP Interview Send Invite to Documentation Training Interview Feedback The FedRAMP Readiness and Development Team offers training on completing FedRAMP documentation. An invite is sent to the CSP for the (optional) training following the interview. This training allows CSPs to receive an overview of the required FedRAMP templates and training on the level of detail required by the FedRAMP process. The FedRAMP Readiness and Development Team provides feedback to the CSP based on the CSP interview. If the Readiness and Development Team determines that the CSP has taken the steps needed to start the FedRAMP process, the team request an initial copy of the CSP’s documentation. If the Readiness and Development Team determines that the CSP is not ready at this point, a team representative provides feedback on what the CSP needs to do to get ready for the process. 5

PAGE Initial SSP Review If the CSP is ready to move forward, the FedRAMP Readiness and Development Team requests a current copy of the CSP’s: System Security Plan (SSP) Configuration Management Plan Contingency Plan Incident Response Plan CSP’s Security Policies and Procedures as required by the SSP The Readiness and Development Team sets up a CSP account in the OMB MAX secure repository and provides upload instructions for submitting the documents for review. Request Initial Documents Initial Documents ReviewISSO Review and Briefing The FedRAMP Readiness and Development Team performs a completeness check on the initial documents and ensures that the right level of detail is present. If the documents meet the FedRAMP requirements, the team holds a briefing with the FedRAMP ISSOs, and provide the documents for a detailed review. If the Readiness and Development Team determines that the CSP’s documentation is not ready at this point, a team representative will provide feedback on what the CSP needs to update in the documents. The FedRAMP ISSOs performs an in-depth review of the initial documents and brief the FedRAMP Director and Manager on the status of the CSP’s documentation. 6

PAGE Kick-Off Decision At the conclusion of the ISSO briefing with the FedRAMP Director and Manager, the team either recommends moving forward to formally kicking off the full FedRAMP P-ATO assessment or requiring the CSP to make additional revisions before moving forward. If the team determines that the CSP’s documentation is not ready at this point, a Readiness and Development Team representative provides additional feedback on what the CSP will need to update in the documents. Kick-Off Decision Setting Up the Kick-Off Meeting Hold Kick-Off Meeting If the FedRAMP Manager and Director accept the recommendation to move forward with the Kick-Off, the Readiness and Development Team schedules the kick-off meeting with the CSP. The Readiness and Development Team provides a briefing template to the CSP in preparation for the Kick- Off Meeting. At the Kick-Off Meeting the CSP briefs its system using the template provided by the Readiness and Development Team. The assigned ISSO provides the CSP with detailed comments on the first 12 sections of the SSP. 7

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.