OSCAL Monthly Workshop Series - Event #37: Collaboratively Maturing the OSCAL Control Mapping Model at the OSCAL Foundation

This workshop presented by Anca Sailer (IBM), Stephen Banghart (OSCAL Foundation), and Vikas Agarwal (IBM) provides a detailed overview of OSCAL and its role in enabling automation and efficiency in compliance processes. It explores the structure of OSCAL schemas, key elements, and emerging artifacts aimed at improving system security and reducing risk. A focus is placed on OSCAL Mapping Models, which are critical tools for aligning different control sets and compliance frameworks. Attendees will learn how mappings capture relationships between controls, highlights coverage gaps, and support communication between compliance and technical teams. The workshop covers schema components, such as mapping models, confidence scores, and matching rationales, with real-world examples and extensions by the OSCAL Foundation.