Compliance is time consuming, burdensome, and expensive, but also necessary to access new markets and serve a wide range of customers. Industry leaders, particularly in the federal government space, have recognized this bottle-neck and proposed a solution for advancing and automating system security assessments through the use of a universal machine-readable data capture and exchange format. These leaders, in collaboration with NIST, have developed the Open Security Control Assessment Language (OSCAL) which serves as foundation for assessing cloud-based information systems. It has already been adopted by the FedRAMP PMO as a testing ground for automating the FedRAMP authorization package and accelerating the ATO approval process.
In this on-demand webinar KyberStorm CEO Milica Lijeskic and Telos solution architect Jet Ryan talk about what OSCAL is, and how compliance teams can benefit from this standard. You will learn:
- What OSCAL is and the benefits compliance teams can expect
- How compliance as code will change the traditional way of accrediting information systems
- Telos’ approach to adopting OSCAL and other data sharing standards
- How our current OSCAL capability produces a machine-readable system security plan (SSP) for FedRAMP
- Future OSCAL capabilities in the works and how they can benefit you
As CEO, Milica has more than a decade of experience in customer relationship management, business operations, and cyber security. Prior to co-funding KyberStorm, Milica served as a Compliance Subject Matter Expert and Cloud Architect for several small and large organizations. She has worked across wide range of technologies and industries to implement countermeasures to mission-critical systems hosted in the cloud or on-premises. Her portfolio of work includes the authorship of strategic cybersecurity plans and policies for federal government agencies and private companies.
Milica holds a Bachelor’s degree in Business Leadership from George Mason University, as well as a variety of technical certifications: CISSP, Amazon Web Services (AWS) Solutions Architect, Kubernetes for SRE and DevSecOps Engineers, and CompTIA Security +.
Jet serves as a Solution Architect for Xacta360 and has supported Telos in variety of roles which have had helped him establish a strong foundational understanding of cybersecurity and cloud. He graduated from Virginia Tech with a Bachelor of Science in Computer Engineering. Jet began his career at Telos four years ago supporting cybersecurity research and development, since then he has gained experience and knowledge across a variety of compliance frameworks, disruptive technologies, networking protocols, encryption schemes, and system architectures. Jet has been instrumental in supporting Xacta’s adoption of OSCAL.
Joining Telos in 2006, Steve Horvath established a new model for providing professional services in support of the company’s Xacta risk management platform. He currently serves as Vice President of Strategy and Cloud with a focus on long-term strategic partnerships and solutions spanning the company’s breadth of offerings. With over 20 years practical experience in the information security domain, Steve is considered an expert in risk and compliance for information technology. He is a graduate of the University of Maryland, College Park, and maintains the Certified Information Systems Security Professional (CISSP) certification.