Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Open Security Controls Assessment Language OSCAL

Presentations

Title / Presenter Type Date
OSCAL Mini Workshop Series - Event #30: Leveraging OSCAL to support cybersecurity lifecycle management
Sara Nieves Matheu Garcia - Post Doctoral Researcher - University of Murcia, Spain
Antonio Skarmeta - Full Professor - University of Murcia, Spain
Presentation 11/20/2024
OSCAL Mini Workshop Series - Event #29: Compliance Framework: An OSCAL-based framework for recording and reporting on audit state
Ian Miell - Partner - Container Solutions
Christiaan Vermeulen - Principal Consultant - Container Solutions
Presentation 11/06/2024
OSCAL Mini Workshop Series - Event #28: Digital Authorizations: FedRAMP Modernization using OSCAL
David Waltermire - Data Strategy & Standards Lead - FedRAMP
Rene-Claude Tshiteya - Technical SME, Automation Developer - FedRAMP
Presentation 09/18/2024
OSCAL Mini Workshop Series - Event #27: Collaborating Compliance with OSCAL-COMPASS, an Open-source Suite of Projects
Anca Sailer - IBM
Vikas Agarwal - IBM
Manjiree Gadgil - IBM
Jenn Power - RedHat
Takumi Yanagawa - IBM
Presentation 07/17/2024
OSCAL Mini Workshop Series - Event #26: Automating Compliance Narratives and Artifacts in AWS
Rick Kidder - AWS
Presentation 06/20/2024
ATO as Code - Enabling Cybersecurity Modernization Through Risk Management Framework Compliance Automation
Gaurav Pal - stackArmor
Presentation 06/05/2024
Adoption of OSCAL in ServiceNow CAM (Continuous Authorization & Monitoring)
Dharav Devani - ServiceNow
Ayush Srivastava - ServiveNow
Presentation 05/15/2024
OSCAL Mini Workshop Series - Event #8: The OSCAL Futurist: Musing on What is Possible and What is Needed
Presentation 11/30/2022
OSCAL Mini Workshop Series - Event #7: Implementing a Security Assessment Framework (SAF) with OSCAL
Presentation 11/02/2022
OSCAL Mini Workshop Series - Event #6: Compliance as Code - from Upstream to Ops
Presentation 10/05/2022
OSCAL Mini Workshop Series - Event #5: NIST Open Source OSCAL Tooling
Presentation 09/07/2022
OSCAL Mini Workshop Series - Event #4: RegScale - Extreme Automation with OSCAL - Exercising the Full OSCAL Stack in a Next Generation GRC
Presentation 08/10/2022
OSCAL Mini Workshop Series - Event #3: OSCAL Implementation: Early Lessons Learned
Presentation 07/13/2022
OSCAL Mini Workshop Series - Event #2: IBM's Trestle - Compliance as Code Orchestrator and Automation Workflow
Presentation 06/15/2022
OSCAL Mini Workshop #1: Compliance as Code for Big Bang Risk Management Framework (RMF) Control Mapping to Accelerate Department of Defense (DoD) Authorization to Operate (ATO)
Presentation 05/18/2022
Open Security Controls Assessment Language (OSCAL)
Michaela Iorga - NIST
Presentation 03/10/2022
Security Automation with Open Security Controls Assessment Language (OSCAL)
Michaela Iorga
michaela.iorga@nist.gov
David Waltermire
david.waltermire@nist.gov
Presentation 05/26/2021
Security Automation Simplified Via NIST's Open Security Controls Assessment Language (OSCAL)
Michaela Iorga - NIST
Brian Ruf - FedRAMP PMO
Presented at:
National Cybersecurity Summit (June 4-6, 2019), Huntsville, AL. https://www.nationalcybersummit.com [178MB file; no audio in video on slide 21]
Presentation 06/05/2019
The Open Security Control Assessment Language: A high-level overview
David Waltermire
david.waltermire@nist.gov
Presentation 01/18/2018
Created April 24, 2018, Updated January 08, 2025