Background
Following a successful Phase I project, which resulted in the publication of the ATO-as-Code white paper, we are now exploring practical implementation approaches for collecting timely, accurate and reliable risk information for continuous risk assessment. The Phase II project team will explore and evaluate new and emerging technologies including NIST OSCAL, AI, SBOMs, helping agencies in defining their requirements and assessing industry solutions.
Call for Volunteers
We are seeking participation by security, DevOps, information assurance and risk management professionals looking to modernize cybersecurity risk management. We are hoping to re-ignite this power group to build upon the work done during the first phase and hope you can join us.
Government Champion Agency
Group Project Lead
| Gaurav Pal |