Using Open Source Tools During the RMF Process
You can get ahead of those pesky POA&Ms and make your infrastructure more secure along the way using open source tools and content to mitigate and automate the security side of the ATO process.
Whether your framework is a STIG or CIS benchmarks, you don't need to recreate these mitigations yourself.
This talk is geared towards all Junior, Mid and Senior level DevOps/DevSecOps engineers or even those who are doing those tasks despite having a different title.
Ben Hosmer
DevOps Office Hours
https://drupal-govcon-2024.sessionize.com/session/696051
Whether your framework is a STIG or CIS benchmarks, you don't need to recreate these mitigations yourself.
This talk is geared towards all Junior, Mid and Senior level DevOps/DevSecOps engineers or even those who are doing those tasks despite having a different title.
Ben Hosmer
DevOps Office Hours
https://drupal-govcon-2024.sessionize.com/session/696051