Merge pull request #831 from GSA/fedramp-help-center-blog

Fedramp help center blog

Gemfile.lock

@@ -11,7 +11,8 @@ GEM
     eventmachine (1.2.7)
     ffi (1.16.3)
     forwardable-extended (2.6.0)
-    google-protobuf (3.25.1)
+    google-protobuf (3.25.5-arm64-darwin)
+    google-protobuf (3.25.5-x86_64-linux)
     http_parser.rb (0.8.0)
     i18n (1.14.1)
       concurrent-ruby (~> 1.0)

_layouts/digital-authorization-package-pilot.html

@@ -101,6 +101,8 @@ <h2>Expectations for the Pilot</h2>
 			<h3 id="how-to-participate">How to Participate </h3>
 			<p>Any CSP, GRC tool provider, or agency may voluntarily participate in the pilot and must meet the following prerequisites before applying to participate:</p>
 			<ul>
+				<li>Must review code, data, and documentation before release (i.e. pre-release branches such as <a href="github.com/GSA/fedramp-automation/tree/develop"><code>develop</code></a> and <a href="https://github.com/GSA/fedramp-automation/branches/all?query=feature"><code>feature</code> branches</a>), during, and after release (i.e. in the <a href="https://github.com/GSA/fedramp-automation/tree/master"><code>main</code></a> branch or <a href="https://github.com/GSA/fedramp-automation/releases">specified releases</a>) in our GitHub repositories.</li>
+				<li>Must follow official processes and communication mechanisms when participating, whether frequently or ad-hoc (i.e. reporting minimally required information in GitHub; participants will schedule their own office hours; et cetera).</li>
 				<li>Must be able to manually or automatically produce OSCAL SSP(s) based on real-world data</li>
 				<li>Must use available documentation at <a href="https://automate.fedramp.gov/documentation" target="_blank" rel="noopener noreferrer">https://automate.fedramp.gov/documentation</a> to guide OSCAL SSP development efforts</li>
 				<li>Must use OSCAL-CLI to exercise FedRAMP external constraints on OSCAL SSPs</li>

_posts/2024-10-15-fedramp-help-center-blog.md

@@ -0,0 +1,41 @@
+---
+title: FedRAMP Help Center
+permalink: /2024-10-15-fedramp-help-center/
+body-class: page-blog
+image: /assets/img/blog-images/2024-10-01-fedramp-help-center.png
+author: FedRAMP
+layout: blog-page
+---
+
+Navigating the complex landscape of cloud security and FedRAMP requirements can be challenging for agencies, cloud service providers (CSPs), third party assessment organizations (3PAOs), acquisition professionals, and other stakeholders. To address this need for additional support, we are launching the <a href="https://help.fedramp.gov/hc/en-us" target="_blank" rel="noopener noreferrer">new FedRAMP Help Center</a>.
+
+The FedRAMP Help Center serves as a centralized repository of information, tools, and resources designed to improve the understanding of FedRAMP for acquisition professionals, cloud service providers, 3PAOs, and agencies. The goal is to provide these stakeholders  with the knowledge they need to understand their role in the FedRAMP ecosystem and effectively address their questions.
+
+<h4>What’s available in the FedRAMP Help Center</h4>
+
+We’re offering several valuable resources within the Help Center:
+
+1. **Knowledge Base Guides and Technical Articles:** Our knowledge base features quick guides that walk you through aspects of the FedRAMP process and controls, while our technical articles focus on areas identified by stakeholders as challenging. Written in plain language, these guides and articles ensure both technical and non-technical audiences can grasp key concepts and collaborate effectively.
+
+2. **Best Practices:** The Help Center will keep you informed with regular updates on FedRAMP policies, clarification of security requirements, and emerging best practices. Our aim is to help you maintain a stronger security posture and stay ahead of potential risks.
+
+3. **FAQs:** Our FAQ section covers a wide range of common queries, and the FAQ content from the main website will be seamlessly integrated into the Help Center to make it easier to maintain, search, link, and review.
+
+4. **Definitions and Acronyms:** The Help Center includes a curated glossary of FedRAMP-specific  terms and acronyms, helping to demystify the language of the program.
+
+<h4>What stakeholder groups need to know</h4>
+
+**Federal Agencies** can use the Help Center to gain deeper insights into how FedRAMP impacts your procurement processes, and how implementation teams can make secure choices when deploying cloud services.
+
+**Cloud Service Providers (CSPs)** can get information in the Help Center to assist you in implementing and documenting FedRAMP requirements.
+
+**Third-Party Assessment Organizations (3PAOs)** can access tools and resources designed to support you with thorough and efficient assessments of CSPs.
+
+**Acquisition Professionals** can learn how to integrate FedRAMP standards into your RFPs, source selection, and contract management to safeguard your agency’s data.
+
+<h3>Looking ahead</h3>
+
+We’re just getting started! Your feedback is vital as we expand the Help Center with more information and resources. If you have suggestions for articles or would like to see additional material, please write to us at <a href="mailto:[email protected]">[email protected]</a>.
+
+
+