Cloud Security Podcast

HOW TO GET FEDRAMP CERTIFIED IN AWS CLOUD

Feb 14, 2023

57:56

Creator website

Highlights

AI Chapters

Episode notes

The Last Three Questions Worked Well for You

01:50

FedRAMP

01:41

FedRAMP Is a Building Block for Cloud Service Providers

02:56

Introduction

6min

Cloud Security Compliance

3min

FedRAMP

3min

FedRAMP Is a Building Block for Cloud Service Providers

3min

BedRamp - Controls Inheritance

2min

Are You Working More With Authorizing Officials?

2min

AWS AO Checklist Steps to Free Compliance?

2min

Common Conflicts With FedRAMP?

2min

FedRAMP vs Smaller Cloud Service Providers: Which One Are You More Interested In?

2min

10.

Documentation and Control Inheritance on AWS

2min

11.

Can CSPs Avoid Common Pitfalls in the Fedram Journey?

3min

12.

FedRAMP

2min

13.

FedRAMP Compliance - What Are Some Common Anti-Patterns That You See People Do?

3min

14.

FedRAMP and DOR Services

3min

15.

GUB Cloud vs FedRAMP?

2min

16.

Fedram Compliance - Is That the Default?

2min

17.

Development Engineering - Where Do You Fall Short?

4min

18.

How Different Is It in the GovCloud Space?

2min

19.

AWS GovCloud

2min

20.

Do You Need a Continuous Monitoring Function in FedRAMP?

2min

21.

FedRAMP - Is There an Easy Platform to Go Learn?

4min

22.

The Last Three Questions Worked Well for You

2min

23.

The K-Pop Group, I'm Gonna Pop Giving Up With That, but It's Still Good

2min

24.

AWS Fair Transfer Space - What's Your Favorite Cuisine?

2min

Cloud Security Podcast - This month we are talking about "Building on the AWS Cloud" and next up on this series, we spoke to Alexis Robinson (Alexis's Linkeidn), Senior Manager, Regulatory Compliance at AWS. FEDRAMP AWS environment can be made easy with the right security assessment framework for your organization. Alexis shared lessons and talk about How AWS Customers can prepare to increase their chances of getting FedRamp certified.

Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv

Host Twitter: Ashish Rajan (@hashishrajan)

Guest Twitter: Alexis Robinson (Alexis's Linkeidn)

Podcast Twitter - @CloudSecPod @CloudSecureNews

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- Cloud Security News

- Cloud Security BootCamp

Spotify TimeStamp for Interview Questions

(00:00) Introduction

(05:35) A bit about Alexis

(08:20) What is FedRAMP and why people care about it?

(11:05) Scope of companies included in FedRAMP?

(13:12) Zero Trust Architecture and FedRAMP

(14:07) The concept of Controlled Inheritance

(15:43) Working with Authorising Officials

(16:44) Working with Security Control Officers

(17:46) AO Checklist to full compliance

(20:42) Conflicts in FedRAMP

(25:59) Common pitfalls to avoid on FedRAMP Journey

(31:38) The anti-patterns in getting FedRAMP Compliant

(35:34) FedRAMP is not just GovCloud

(38:12) Requirements with FedRAMP

(39:48) Where do people fall short with FedRAMP?

(41:26) How to make FedRAMP more developer friendly?

(44:17) How is FedRAMP different for Govcloud?

(47:21) What skillsets do you require in a team for FedRAMP?

(49:07) How to learn about FedRAMP

(53:09) Fun Questions

See you at the next episode!

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.