Project

General

Profile

Actions
Copy link

Deliverable #240

closed

SSP artifacts

Added by Jacob Halle almost 2 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Start date:
08/28/2022
Due date:
08/02/2023
% Done:

100%

Estimated time:
(Total: 0.00 h)

Description

3.3.32.11 SSP artifacts. The artifacts provided to the Government will be in full compliance with DoD and Federal regulations as well as government agency policies.

Files

Download all files
ORE-FEDRAMP-SSP-25JUL2023.pdf (22.6 MB) ORE-FEDRAMP-SSP-25JUL2023.pdf Jacob Halle, 07/26/2023 01:45 PM
ORE-CMMC-SSP-26JUL2023.pdf (1.05 MB) ORE-CMMC-SSP-26JUL2023.pdf Jacob Halle, 07/26/2023 01:45 PM
ORE-OSCAL-25JUL2023.pdf (8.49 MB) ORE-OSCAL-25JUL2023.pdf Jacob Halle, 07/26/2023 01:45 PM

Subtasks 1 (0 open1 closed)

Task #205: Provide artifacts for ORE accreditation, in accordance with DoD and Federal requirements, including RMF.Closed08/28/202208/02/2023

Actions

Related issues

Related to Deliverable #238: ATO artifactsClosed08/03/202208/02/2023

Actions
Actions
Copy link
 #1

Updated by Jacob Halle almost 2 years ago

  • Status changed from New to In Progress
  • % Done changed from 0 to 80
Actions
Copy link
 #2

Updated by Jacob Halle almost 2 years ago

Actions
Copy link
 #3

Updated by Jacob Halle almost 2 years ago

  • Tracker changed from Feature to Deliverable
Actions
Copy link
 #4

Updated by Oscar Robertson over 1 year ago

We see that this task is related to ATO artifacts, how does 2Twelve intend on meeting this requirement? What EXACTLY is the requirement?

Actions
Copy link
 #5

Updated by Jacob Halle over 1 year ago

Hi Gerald,
Here is a copy of the email I sent out earlier this week with an update on SSP and ATO artifacts.

Hi David,
It was brought to my attention that you requested our current status on accreditation for the ORE. Here is an update from the team:

Worked with Trajan:
- 2twelve provided ORE HW/SW spreadsheet (software inventory, boundary diagram, ports/protocols)
- 2twelve provided ORE DADMS requests and Trajan submitted
- 2twelve provided ORE SEISA document and Trajan submitted

Immediate blockers - need government help to unblock:
- Provide ISSO
- Provide ATO/RMF process
- Provide inherited controls and respective control implementation and/or shared responsibility matrix for end state PaaS (Azure Stack)

In progress:
- 2twelve documenting ORE security control implementations in continuous compliance system (regscale)
- 2twelve scanning/ remediating / hardening application code.

We would be happy to discuss further if you have any questions.

Actions
Copy link
 #6

Updated by Oscar Robertson over 1 year ago

Can the government get an update on this task?

Actions
Copy link
 #7

Updated by Jacob Halle over 1 year ago

  • File ORE-FEDRAMP-SSP-25JUL2023.docx added
  • File ORE-CMMC-SSP-25JUL2023.docx added
  • File ORE-OSCAL-25JUL2023.json added

This deliverable is complete. See attached documentation. Also see related documentation in Task #205 and Deliverable #238.

Actions
Copy link
 #8

Updated by Jacob Halle over 1 year ago

  • Status changed from In Progress to Closed
Actions
Copy link
 #9

Updated by Jacob Halle over 1 year ago

  • File deleted (ORE-CMMC-SSP-25JUL2023.docx)
Actions
Copy link
 #10

Updated by Jacob Halle over 1 year ago

  • File deleted (ORE-OSCAL-25JUL2023.json)
Actions
Copy link
 #11

Updated by Jacob Halle over 1 year ago

  • File deleted (ORE-FEDRAMP-SSP-25JUL2023.docx)
Actions
Copy link

Also available in: Atom PDF