BPM's Sarah A. Lynn and Lauren Bodie discuss FedRAMP documentation in action, starting with FedRAMP System Security Plan's (SSP) various templates and sections.
Sarah has over 17 years of advisory experience and is an expert in her field. She has worked at many high tech firms throughout the years, such as Cisco, WebEx, Lucent and IBM. Sarah works with an array of customers, both domestic and global, that require specific expertise when compliance and regulations transform into unexpected levels of security. Sarah’s expertise in the certification and authorization processes, control requirements and security monitoring capabilities enable her teams to prepare customers for the transformation ahead.
Lauren has six years of IT Security Advisory experience and provides clients with security attestation, authorization and certification services. She excels at providing a hands-on approach to guidance that is tailored to the specific needs and size of the organization. Lauren typically serves small-to-medium companies that are growing their security compliance, as well as building their security programs and teams. She also seamlessly adapts to the needs of larger, global organizations and assists in meeting their compliance objectives. Lauren has an extensive background in FedRAMP, ISO, NIST, GDPR and process management.
When considering a FedRAMP authorization many questions come to mind. In this series Sarah Lynn and Lauren Bodie attempt to share their knowledge gained over the past 6 years and 9+ customers pursuing FedRAMP.