Insights on FedRAMP Moderate with Alexander Neff | Drafting Compliance Ep. 35 скачать в хорошем качестве

Insights on FedRAMP Moderate with Alexander Neff | Drafting Compliance Ep. 35

Kayne and Tom talk with Alexander Neff, Lecturer at ASU and Senior Director of InfoSec at Faro Health. Great conversation was had on both Alexander’s FedRAMP experience and his beer choice. Come see Kayne’s highest rated beer! Learn how Hyperproof can support your FedRAMP journey: https://hyperproof.io/product/fedramp/ Reference documents: https://www.fedramp.gov/documents-tem... ▬ Contents of this video ▬▬▬▬▬▬▬▬▬▬ 0:00 - Intro 0:22 - Beer background 6:35 - FedRAMP Moderate compliance, given its two decades of operation and the existing technical debt? 9:50 - How did the requirement to comply with FIPS standards pose unique challenges in your path to achieving FedRAMP Moderate status? 13:08 - In what ways did your company's ongoing SOC 2 Type 2 compliance efforts align with or vary from the demands of FedRAMP Moderate compliance? 16:44 - Your company hoped to service a broad range of customer industries and was open to entering new markets. How did this strategic flexibility influence your approach to meeting diverse compliance requirements such as CJIS, ISO 27001, FedRAMP, and StateRAMP? 21:40 - You've mentioned that FedRAMP was a multi-year project at your company. Can you walk us through the timeline and key milestones of this extensive process? 24:42 - Compliance often involves strict adherence to standards, yet you noted a focus on meeting the "spirit of the law" rather than ticking off every box. Can you expand on how this philosophy has guided your compliance strategy? 28:30 - Your company chose not to pursue the Joint Authorization Board (JAB) route for FedRAMP authorization. Can you explain the reasoning behind this decision and how it affected your overall strategy? 31:30 - Beer reviews The Drafting Compliance series: To lighten the dark corners of compliance, hosts Kayne and Tom as share with you Hyperproof's journey to becoming FedRAMP moderate, an overall roadmap to achieve FedRAMP compliance in a year, and the tips and tricks they learn along the way. As if compliance isn't fun enough, the hosts also try out a new beer each episode and rate it on a scale from 1-10.