Las Vegas Convention Center

26th & 27th April 2023

10AM - 5PM WED & 10AM - 4PM THUR

Apr 26 & 27 / 2023

LVCC, Las Vegas

Samantha Dizor Carter: Speaking at the Call and Contact Center Expo USA

Samantha Dizor Carter

Manager, FedRAMP  -  MindPoint Group

FedRAMP's Role in Cyber Hygiene

Continuous monitoring has always been a fundamental requirement of the FedRAMP program, this includes not only the annual security assessments conducted by 3PAOs but also the continuous monitoring activities that CSPs must meet to maintain their FedRAMP recognition. These continuous monitoring activities include:

- Annual security and awareness training
- Vulnerability scanning
- Web application scanning
- Contingency plan testing
- Incident response plan testing

They also include other continuous monitoring activities to improve the CSP security posture, resulting in better Cyber Hygiene. However, these practices should not be limited to the authorized boundary but should be implemented by the CSP organization-wide to ensure good Cyber Hygiene across the corporate infrastructure.