This is a potential security issue, you are being redirected to https://csrc.nist.gov.
You have JavaScript disabled. This site requires JavaScript to be enabled for complete site functionality.
This workshop presented by Anca Sailer (IBM), Stephen Banghart (OSCAL Foundation), and Vikas Agarwal (IBM) provides a detailed overview of OSCAL and its role in enabling automation and efficiency in compliance processes. It explores the structure of OSCAL schemas, key elements, and emerging artifacts aimed at improving system security and reducing risk. A focus is placed on OSCAL Mapping Models, which are critical tools for aligning different control sets and compliance frameworks. Attendees will learn how mappings capture relationships between controls, highlights coverage gaps, and support communication between compliance and technical teams. The workshop covers schema components, such as mapping models, confidence scores, and matching rationales, with real-world examples and extensions by the OSCAL Foundation.
Security and Privacy: continuous monitoring, controls, risk assessment, threats, vulnerabilities