Skip to content

Compliance

The Compliance area is where all compliance-related tickets, projects, and tasks are managed. This includes security assessments, FedRAMP 20x Key Security Indicators (KSIs), annual security training, and data requests.

Compliance overview

Active

Assessment

Compliance assessment projects and tasks, including annual audit management and security assessment coordination.

  • Assessment - active assessment projects (e.g. annual audit management)
  • Data Requests - requests for evidence, documentation, or data needed to support assessments
  • Documentation - compliance documentation tasks and deliverables
  • Reviews and Testing - security control reviews and testing activities
  • Training - annual security training tracking and completion

KSIs

FedRAMP 20x Key Security Indicator tracking and management.

  • Open KSIs - all active KSI items
  • Open Machine-Based KSIs - KSIs validated through automated/machine-based checks
  • Open Non-Machine-Based KSIs - KSIs requiring manual validation or attestation

Other Findings

  • Open Assessment Findings - active findings from compliance assessments
  • Open Deltas - identified gaps between current state and compliance requirements
  • Closed Assessment Findings - resolved assessment findings
  • Closed Deltas - resolved compliance gaps