teresalaw
ServiceNow Employee
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
10-23-2020
08:10 PM
Digital transformation is not just a means to strive and grow within the private sector. Digital transformation is also occurring in the public sector (including within the U.S. critical infrastructure), and it represents an increase in the attack surface that can be exploited by adversaries. Consequently, security and privacy risks continue to be a large part of the national conversation and topics of national security. The RMF was purpose-built by NIST and mandated by the federal government to strengthen the underlying systems, hardware, software, and services to provide the necessary resilience to support the United States' economic and national security interests.
ServiceNow developed the Continuous Authorization and Monitoring (CAM) application to help organizations automate RMF. But it can also enable organizations to prepare for CMMC and implement other risk frameworks such as NIST CSF, GSA, DHS, FedRAMP, TIC, and ISO 31000, which the Canadian Federal Government is adopting as a foundation for continuous risk management.
All agencies view the ability to manage risk as imperative. This is apparent as Mr. Pat Flanders, Deputy Assistant Director, Information Operations (DAD IO/J-6), Chief Information Officer (DHA), U.S. Department of Defense, and Jonathan Alboum, Principal Digital Strategist, Federal Government, ServiceNow discuss risk and resilience for information systems.
CAM is built on the ServiceNow platform, enabling work automation, configurability, and management of your entire organization’s or agency’s workflows beyond simple control mappings. ServiceNow puts you in total control without requiring you to build out an entire system from scratch.
Some of the key capabilities of CAM are:
- Ability to define an authorization boundary with real-time infrastructure data
- Common controls and control inheritance
- Ability to define an authorization package that is taken through the 7-stage process for the RMF
- Create POA&Ms and track them until completion
- Obtain the approval to operate and perform ongoing authorization via continuous monitoring
Learn more at www.servicenow.com/risk or watch a demo of the CAM application.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
