<ul><li>The Open Security Controls Assessment Language (OSCAL) allows security professionals to express control-related information in machine-readable formats.</li><li>Amazon Web Services (AWS) has collaborated with NIST and the FedRAMP program to advance the adoption of OSCAL in the United States.</li><li>In Canada, the Canadian Centre for Cyber Security (CCCS) has undertaken a project to encode relevant information in OSCAL to express cybersecurity requirements.</li><li>CCCS has created OSCAL profiles that assess the security of cloud services and has published OSCAL files on GitHub to support the Canadian security community.</li></ul>

Using OSCAL to express Canadian cybersecurity requirements as compliance-as-code

Discover more