Project Management

Please login or join to subscribe to this thread

Security Compliance Program Mgmt.

linkedin twitter facebook   Work Breakdown Structures (WBS)  
avatar
Anonymous
Has anyone had experience leading security compliance programs for large scale enterprise, specifically to achieve FedRamp certification? I'm looking to kickoff an initiative soon for my company as the Program Lead but don't have much experience with implementation of controls and the best way to establish planning, scope, LOE, wbs, etc.
avatar
David Russo Program Manager| Applied Research Solutions Nashua, Nh, United States
Hello, the WBS should cover assessment, policies, compliance, continuous monitoring, and training. If you have a current assessment and list of POAMs, assign their corrective action to the lowest level in the organization who can address it. Likely, you'll have phased approach, consider building a SOW to look like: 1. Project Information
1. Project Summary
2. Project Process
3. Project Budget
4. Project Milestones
5. Overall Project Governance
2. Terms & Conditions
3. General Assumptions
4. Phase Details
1. Phase 1
1. Description
2. Deliverables & Assumptions
3. Milestones & Schedules
4. Budget & Payment
5. Approvals
2. Phase 2
1. Description
2. Deliverables & Assumptions
3. Milestones & Schedules
4. Budget & Payment
5. Approvals
3. Phase 3
1. Description
2. Deliverables & Assumptions
3. Milestones & Schedules
4. Budget & Payment
5. Approvals
Appendix A, Deliverable Descriptions

Please login or join to reply

Content ID:
ADVERTISEMENTS

I'm lactose intolerent. I have no patience for lactose and I won't stand for it.

- Jerry Seinfeld

ADVERTISEMENT

Sponsors







Vendor Events

See all Vendor Events

Newsletters

Jun 3: The Career Problem Facing New PMs
May 20: Your PM Career as a Project Life Cycle
May 13: The Big Lie After Layoffs

See all newsletters