Document Category: Continuous Monitoring
pdf
Continuous Monitoring Escalation Process
This document explains the actions taken when a service provider fails to maintain an adequate continuous monitoring program.
pdf
Continuous Monitoring Guide
Continuous monitoring review procedures outline the process to examine each monthly package.
pdf
Incident Communications Procedures
This document describes the process for GovRAMP stakeholders to use when reporting information concerning information system security incidents or suspected information system security incidents.
pdf
Vulnerability Scan Requirements Guide
This guide describes the requirements for all vulnerability scans provided by service providers to GovRAMP for products with a Ready, Provisionally Authorized, or Authorized status.