Complete FedRAMP Advisory – Verify
- Seeking guidance and support for establishing schedules, processes and procedures that protect and maintain FedRAMP authorization status
- Values having an external expert perform spot checks of controls that address FedRAMP continuous monitoring requirements
- Coordinate periodic activities including spot checks to ensure controls operation as required for FedRAMP continuous monitoring
- Schedule of activities to be performed weekly, monthly, quarterly, etc.
- Periodic continuous monitoring procedures
- Control selection worksheets for annual testing
- Coordinate periodic activities required for continuous monitoring of FedRAMP controls
- Manage resolution of new vulnerabilities, POA&M issues, & deviation requests
- Coordinate performance of required periodic controls (i.e., monthly, and quarterly)
- Spot-check to ensure that “continuous and ongoing” controls are still operating
- Optional: Perform vulnerability scanning, incident response and change control