Version: 1.0.0 | Source: FedRAMP 20x | Families: 11 | Total Controls: 54
FedRAMP 20x Key Security Indicators (KSIs) — outcome-focused security capabilities replacing traditional control-by-control narrative compliance. Covers Low and Moderate impact levels across 11 security themes.
| Code | Family Name | Description | Controls | Actions |
|---|---|---|---|---|
| AUTH | Authorization by FedRAMP | 4 | ||
| CM | Change Management | 7 | ||
| CNA | Cloud Native Architecture | 5 | ||
| EDU | Cybersecurity Education | 3 | ||
| IAM | Identity and Access Management | 5 | ||
| IR | Incident Response | 4 | ||
| MLA | Monitoring, Logging, and Auditing | 7 | ||
| POL | Policy and Inventory | 4 | ||
| REC | Recovery Planning | 4 | ||
| SVC | Service Configuration | 7 | ||
| SCR | Supply Chain Risk | 4 |
No quality issues detected. All controls passed validation checks.
Not set
1.0.0
Not set
2026-03-23T01:27:32Z
No roles defined
No parties defined