Organize Your ATO Process with Team Subpackages

ATOs with Team Subpackages to manage team workload and move faster in OpenRMF Professional

ATO Process and Tracking Information

Tracking all the RMF and FedRAMP control compliance with checklists and statements, updating patch information, tracking vulnerabilities, updating checklists and managing the workload it is a LOT for even a small team to keep up with. All the while making sure you have the correct data. And that people are only editing THEIR data in the process.

YT Deep Dive on Team Subpackages

Divide up the Workload

That is where Team Subpackages come in! The concept was coined by our CISO Dave Gould, and allows you to gather checklists and/or hardware devices into logical groups. Then give access for users to JUST that group. Let them edit and update checklists. Let them bulk update if need be, but only their checklist data. Let them update the hardware patch scan data, hardware and software listing, and see the PPSM data as well. They can even use API calls designed to automate managing the Team Subpackage data at that level.

Setup Team Subpackages for your ATO System Package so groups can manage their own data.

Track your ATO at the proper level

With Team Subpackages, your team can update their own data at the proper level. You keep all the automation of the updated scores, POAM, generating compliance, notifications, and the goodness that is OpenRMF Professional running behind the scenes for the whole system package so you still make everyone’s job easier!

Delegate, Trust by Verify, and Move Faster

What this lets your cyber professions and program managers do is delegate the work down to those that do it every single day. Without accidentally updating the wrong checklist or scan or editing the POAM or compliance data they should not be changing.

Evaluate OpenRMF Professional for Free

Soteria Software’s OpenRMF Professional is revolutionizing the way you track RMF, FedRAMP and Cyber Compliance through automation! Whether you are tracking RMF and FedRAMP right now by itself, automating in a DevSecOps process, need a cyber compliance engine for your Software Factory or are even migrating on premise to cloud infrastructure — OpenRMF Professional can help ease the workload and get you there faster.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Dale Bingham

Dale Bingham

CEO of Soteria Software. Developer on OpenRMF. Software Geek by trade. Father of three daughters. Husband. Love new tech where it fits. Follow at @soteriasoft