Hi,
CSA and its
Serverless working group, is looking for
new authors to help (theoretically) implement 3 control families from the
NIST 800-53 rev.5 to Serverless FaaS.
The task is to identify all the relevant sub-controls for Serverless; Explain 'The reason they are relevant to Serverless' and describe the 'Implementation to Serverless FaaS' each of the sub-controls would have.
The
3 control categories that don't have an author assigned to them are:
- AT: Awareness and Training
- RA: Risk Assessment
- SA: System and Services Acquisition
If interested, please contact
[email protected].
Kind regards,
Marina
------------------------------
Marina Bregkou,
Senior Research Analyst,
CSA
------------------------------