• Home

  • Documents

  • PAGE Agency ATO Quick Guide 1 September 21, 2015
5
PAGE www.fedramp.gov Agency ATO Quick Guide 1 September 21, 2015 www.fedramp.gov

PAGE Agency ATO Quick Guide 1 September 21, 2015

Tags:

Embed Size (px)

Citation preview

Page 1: PAGE Agency ATO Quick Guide 1 September 21, 2015

PAGE www.fedramp.gov

Agency ATO Quick Guide

1

September 21, 2015

www.fedramp.gov

Page 2: PAGE Agency ATO Quick Guide 1 September 21, 2015

PAGE www.fedramp.gov 2

• The FedRAMP Agency ATO authorization process should follow the FedRAMP Security Assessment Framework (SAF)

• The FedRAMP SAF is based on the NIST Risk Management Framework (RMF)

• The FedRAMP SAF is available on FedRAMP.gov by navigating to the Resources -> Program Documents webpage

Assessment Process

https://www.fedramp.gov/files/2015/06/FedRAMP-Security-Assessment-Framework-v1.0-2.docx
https://www.fedramp.gov/files/2015/06/FedRAMP-Security-Assessment-Framework-v1.0-2.docx
Page 3: PAGE Agency ATO Quick Guide 1 September 21, 2015

PAGE www.fedramp.gov 3

• FedRAMP templates are available at FedRAMP.gov on the Resources -> Templates webpage

• Agency ATO packages submitted to FedRAMP must include 14 FedRAMP templates

• The PMO will check these templates for completeness, critical security control showstoppers, and quality

• It’s recommended that you use the Rev 4 Security Assessment Test Cases that the FedRAMP PMO released in Excel format for public comment: https://www.fedramp.gov/files/2015/01/FedRAMP-Security-Assessment-Test-Cases-Rev-4-v1_.xlsx

• Security Assessment Plan (SAP)– Security

Assessment Test Cases

• Security Assessment Report (SAR)– Security Test

Cases• Plan of Action and

Milestone (POA&M)

• Agency ATO Letter

Document Check List – FedRAMP Templates

FedRAMP Templates Available:• System Security Plan

(SSP)– FIPS Pub 199– E-Authentication– Control

Implementation Summary (CIS)

– CIS Worksheet– IT Contingency Plan

(CP) and CP Test – Privacy Threshold

Analysis (PTA) / Privacy Impact Assessment (PIA)

– Rules of Behavior (ROB)

http://www.fedramp.gov/resources/templates-3/
http://www.fedramp.gov/resources/templates-3/
https://www.fedramp.gov/files/2015/01/FedRAMP-Security-Assessment-Test-Cases-Rev-4-v1_.xlsx
https://www.fedramp.gov/files/2015/01/FedRAMP-Security-Assessment-Test-Cases-Rev-4-v1_.xlsx
https://www.fedramp.gov/files/2015/01/FedRAMP-Security-Assessment-Test-Cases-Rev-4-v1_.xlsx
https://www.fedramp.gov/files/2015/01/FedRAMP-Security-Assessment-Test-Cases-Rev-4-v1_.xlsx
Page 4: PAGE Agency ATO Quick Guide 1 September 21, 2015

PAGE www.fedramp.gov 4

• Agency ATO packages submitted to FedRAMP should have 8 attachments that are not FedRAMP templates

• The PMO will check these templates for completeness, critical security control showstoppers, and quality

Document Check List – Documents without a FedRAMP Template

No FedRAMP Templates Available:

• SSP Attachments– Information System Security Policies &

Procedures – Configuration Management (CM) Plan– Incident Response Plan (IRP) – User Guide– Signature Page

• SAP Attachment– Rules of Engagement (ROE)

• SAR Attachment– Vulnerability Scans– Ad Hoc Evidence

Page 5: PAGE Agency ATO Quick Guide 1 September 21, 2015

PAGE www.fedramp.gov 5

• An Agency ATO letter must be included in a FedRAMP Agency ATO package

• The FedRAMP Agency ATO Letter template is attached below:

• You can find this template on FedRAMP.gov by navigating to the Resources -> Templates webpage

FedRAMP Agency ATO Letter Template

Click the letter to view

https://www.fedramp.gov/files/2015/03/Template-FedRAMP-ATO-Letter.docx

Tri-Agency Research Grants Administration Handbook Tri-Agency Resea… · October 31, 2015 A Quick Reference Guide for Expense Eligibility ... Bob Gilongos, CPA, CMA Financial Analyst,

Tri-Agency Research Grants Administration Handbook Tri-Agency Resea… · October 31, 2015 A Quick Reference Guide for Expense Eligibility ... Bob Gilongos, CPA, CMA Financial Analyst,

Documents
ATO over ETCS - European Union Agency for Railways · 2018-07-11 · 1 ATO over ETCS Achieving Metro Headways on the Mainline Jon Hayes November 2017. Paul Bates FIET FIRSE 1959 -

ATO over ETCS - European Union Agency for Railways · 2018-07-11 · 1 ATO over ETCS Achieving Metro Headways on the Mainline Jon Hayes November 2017. Paul Bates FIET FIRSE 1959 -

Documents
A Quick Guide to Building a GIS for Your Public Safety Agency

A Quick Guide to Building a GIS for Your Public Safety Agency

Technology
CORRESPONDENT LENDING Product Quick Reference Non … · Product Quick Reference - Non-Agency (05-14-18) Page 1 of 5 Non-Agency – Amortizing Fixed Product Name Market Type Minimum

CORRESPONDENT LENDING Product Quick Reference Non … · Product Quick Reference - Non-Agency (05-14-18) Page 1 of 5 Non-Agency – Amortizing Fixed Product Name Market Type Minimum

Documents
FO FCTOA - easa.europa.eu FCTOA 00010 …  · Web viewEuropean Aviation Safety Agency. Form. Application for a Part – ORA ATO Approval. European Aviation Safety Agency. Form. Application

FO FCTOA - easa.europa.eu FCTOA 00010 …  · Web viewEuropean Aviation Safety Agency. Form. Application for a Part – ORA ATO Approval. European Aviation Safety Agency. Form. Application

Documents
Third Generation Security (3GS) 13 February 2001 Jaynarayan H. Lala Defense Advanced Research Projects Agency Advanced Technology Office (ATO)

Third Generation Security (3GS) 13 February 2001 Jaynarayan H. Lala Defense Advanced Research Projects Agency Advanced Technology Office (ATO)

Documents
Ato Médico

Ato Médico

News & Politics
QUICK BUILDS FOR BETTER STREETS - b.3cdn.net · QUICK BUILD 4 QUICK BUILDS FOR BETTER STREETS: A NEW PROJECT DELIVERY MODEL FOR U.S. CITIES. A TEAM We recommend that any agency

QUICK BUILDS FOR BETTER STREETS - b.3cdn.net · QUICK BUILD 4 QUICK BUILDS FOR BETTER STREETS: A NEW PROJECT DELIVERY MODEL FOR U.S. CITIES. A TEAM We recommend that any agency

Documents
ATO-Approved Training Organizationdcv.dubes.net/upload/letacko/centri/Centri za obuku letackog osoblja.… · ATO-Approved Training Organization ATO "SMATSA Aviation Academy" SRB/ATO-006

ATO-Approved Training Organizationdcv.dubes.net/upload/letacko/centri/Centri za obuku letackog osoblja.… · ATO-Approved Training Organization ATO "SMATSA Aviation Academy" SRB/ATO-006

Documents
Part ORA ATO Manuals - European Aviation Safety Agency · 6. Corporate commitment by Accountable Manager ... European Aviation Safety Agency User Guide Part ORA ATO Manuals Doc #

Part ORA ATO Manuals - European Aviation Safety Agency · 6. Corporate commitment by Accountable Manager ... European Aviation Safety Agency User Guide Part ORA ATO Manuals Doc #

Documents
2010 Ato Ato Media Kit

2010 Ato Ato Media Kit

Documents
ER Quick Start - Texas Education Agency › sites › default › files › ER Quick Reference Guide.pdfER Quick Reference Guide i Contents ... applications, look for the Expenditure

ER Quick Start - Texas Education Agency › sites › default › files › ER Quick Reference Guide.pdfER Quick Reference Guide i Contents ... applications, look for the Expenditure

Documents
Quick Start Guide - An Interactive Digital Agency

Quick Start Guide - An Interactive Digital Agency

Documents
2011 Mississippi Emergency Management Agency … · The Mississippi Emergency Management Agency is pleased to provide this Quick ... the most destructive natural disaster in terms

2011 Mississippi Emergency Management Agency … · The Mississippi Emergency Management Agency is pleased to provide this Quick ... the most destructive natural disaster in terms

Documents
ATO N° 004/2014 MD/ALE REDAÇÃO ALTERADA PELO ATO … · REDAÇÃO ALTERADA PELO ATO Nº001/2015-MD/ALE ATO REVOGADO PELO ATO Nº 009/2015-MD/ALE Regulamenta a Lei Complementar

ATO N° 004/2014 MD/ALE REDAÇÃO ALTERADA PELO ATO … · REDAÇÃO ALTERADA PELO ATO Nº001/2015-MD/ALE ATO REVOGADO PELO ATO Nº 009/2015-MD/ALE Regulamenta a Lei Complementar

Documents
1. OBECNĚ · 2019. 7. 31. · Druhy ATO a práva ATO 6 12.11.2018 3 2. Druhy ATO a práva ATO 7 12.11.2018 3 3. Požadavky na osvědení ATO 8 12.11.2018 3 3. Požadavky ... povinnosti,

1. OBECNĚ · 2019. 7. 31. · Druhy ATO a práva ATO 6 12.11.2018 3 2. Druhy ATO a práva ATO 7 12.11.2018 3 3. Požadavky na osvědení ATO 8 12.11.2018 3 3. Požadavky ... povinnosti,

Documents
2011 ato ato media kit

2011 ato ato media kit

Entertainment & Humor
COMPACT COMPOSITION OPERATORS ON THE …d-scholarship.pitt.edu/7977/1/tadesse_april_27_06.pdfTaye, Ato Gebregziabher Kiros, Ato Ekubay Ki ay ,Ato Zewdu Teferi, Ato Mulugeta Ejigu,

COMPACT COMPOSITION OPERATORS ON THE …d-scholarship.pitt.edu/7977/1/tadesse_april_27_06.pdfTaye, Ato Gebregziabher Kiros, Ato Ekubay Ki ay ,Ato Zewdu Teferi, Ato Mulugeta Ejigu,

Documents
Business Applications Solution (BAS) Program …...shared, for the implementation of 168 controls • Independently assessed • Receives ATO from responsible Department or Agency

Business Applications Solution (BAS) Program …...shared, for the implementation of 168 controls • Independently assessed • Receives ATO from responsible Department or Agency

Documents
WordPress Website Design Agency - Some Quick Tips to Start-up

WordPress Website Design Agency - Some Quick Tips to Start-up

Design
Do Ato Motor Ao Ato Mental

Do Ato Motor Ao Ato Mental

Documents
manejo ATO

manejo ATO

Documents
Myanmar Flower Sector Quick Scan - agroberichtenbuitenland.nl · Netherlands Enterprise Agency - RVO GMBS Business Support . MYANMAR FLOWER SECTOR QUICK SCAN ‘sustainable sector

Myanmar Flower Sector Quick Scan - agroberichtenbuitenland.nl · Netherlands Enterprise Agency - RVO GMBS Business Support . MYANMAR FLOWER SECTOR QUICK SCAN ‘sustainable sector

Documents
Gas Range ATO-4B/ATO-6B/ATO-10B · ATO-4B/ATO-6B/ATO-10B ATO-4B ATO-6B ATO-10B. 18 Atosa International Atosa SA SCIICATIONS BY A T O S ATOSA SA, INC. Toll ree mail inoatosausa.com

Gas Range ATO-4B/ATO-6B/ATO-10B · ATO-4B/ATO-6B/ATO-10B ATO-4B ATO-6B ATO-10B. 18 Atosa International Atosa SA SCIICATIONS BY A T O S ATOSA SA, INC. Toll ree mail inoatosausa.com

Documents
Quick Reads Writing Pack - Reading Agency Pack.doc  · Web viewThis Writing Pack accompanies The Reading Agency’s . Quick Reads Reading Support Pack . for the titles published

Quick Reads Writing Pack - Reading Agency Pack.doc  · Web viewThis Writing Pack accompanies The Reading Agency’s . Quick Reads Reading Support Pack . for the titles published

Documents
Ato Administrativo

Ato Administrativo

Documents
Foreign ATO User Guide for FSTD User Approval - easa.europa.eu · European Aviation Safety Agency User Guide Foreign ATO approvals – User guide for FSTD user approval Doc # UG.FCTOA.00005-000

Foreign ATO User Guide for FSTD User Approval - easa.europa.eu · European Aviation Safety Agency User Guide Foreign ATO approvals – User guide for FSTD user approval Doc # UG.FCTOA.00005-000

Documents
Agency Budget System Job Aids - budgetlogon.ofm.wa.gov · Quick Overview Agency Budget System (ABS) Quick Overview June 4, 2018 Page 1 of 2 . ABS is a modern software solution that

Agency Budget System Job Aids - budgetlogon.ofm.wa.gov · Quick Overview Agency Budget System (ABS) Quick Overview June 4, 2018 Page 1 of 2 . ABS is a modern software solution that

Documents
Quick Reference Agency eServices / Personal Trainer Quick ... · Agency eServices – Personal Trainer Page | 1 OVERVIEW Personal Trainer has been created with you in mind. Interactive,

Quick Reference Agency eServices / Personal Trainer Quick ... · Agency eServices – Personal Trainer Page | 1 OVERVIEW Personal Trainer has been created with you in mind. Interactive,

Documents
PAGE Agency ATO Quick Guide 1 May 1, 2015

PAGE Agency ATO Quick Guide 1 May 1, 2015

Documents