AWS and NIST Collaborate on OSCAL for Canadian Cybersecurity
/ 1 min read
🌐 AWS Collaborates with NIST to Implement OSCAL for Canadian Cybersecurity Compliance. The Open Security Controls Assessment Language (OSCAL), developed by NIST, enables security professionals to express compliance information in machine-readable formats, facilitating automated data analysis. AWS has partnered with NIST and FedRAMP to promote OSCAL adoption, becoming the first cloud service provider to submit a FedRAMP system security plan in OSCAL format. In Canada, the Canadian Centre for Cyber Security (CCCS) has encoded its ITSG-33 security controls into OSCAL, enhancing automated analysis and compliance assessments. The project includes the creation of OSCAL profiles for CCCS’s cloud security standards, with future plans to improve translation and accessibility of compliance information. Resources and OSCAL files from this initiative are available on GitHub.
