Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Compliance Masonry QuickStart

Compliance Masonry QuickStart

Aidan Feldman

October 20, 2016
Tweet

More Decks by Aidan Feldman

Other Decks in Technology

Transcript

  1. Compliance Masonry
    Making compliance
    easier, faster, better.
    Aidan Feldman & James Scott, 18F
    eRegulations

    View Slide

  2. View Slide

  3. Compliance documentation is
    the biggest bottleneck that
    impacts delivery

    View Slide

  4. MyApp
    cloud.gov
    Component
    AWS
    Component
    Cloud
    Foundry
    Component
    Compliance
    Masonry
    Inherits Inherits
    Inputs
    SSP
    Outputs
    CIS
    Webiste

    View Slide

  5. demo

    View Slide

  6. eRegs demo

    View Slide

  7. Potential benefits for reviewers
    ● Automatically generate reports
    ● Show reviewers what has changed
    ● Ability to view subsets of the documentation
    ● Tracking of dependent systems

    View Slide

  8. Continuously Validate
    and Verify

    View Slide

  9. Thanks!

    View Slide

  10. name: Identification and Authentication Policy for 18F
    satisfies:
    - standard: NIST-800-53
    control: IA-8 (1)
    narrative: |
    PIV verification is subject to the delegated enterprise SSO system.
    ...

    View Slide

  11. View Slide

  12. View Slide