Episode notes
I have a surprise for you --- the last GRC Academy podcast!
In this last episode, Michael Greenman from Deltek shares the journey to FedRAMP Moderate Equivalency for Deltek Costpoint GovCon Cloud Moderate (GCC-M).
And let me tell you, it's quite a story: changes in the control baseline, new policy from the DoW, and lessons learned.
Here are some of the biggest takeaways:
- The real-world implications of DoW's equivalency definition
- How the absence of continuous monitoring shapes the trust model
- How Deltek developed a customer responsibility matrix that reduces friction for their customers
- Should the DoW blow up FedRAMP moderate equivalency?
We also discussed improvements that can be made by the DoW, the Cyber AB, and more!
We recorded this months ago, but this conversation is st ...
Keywords
cmmcfedramp