Cloud service providers (CSPs) and Third Party Assessment Organizations (3PAOs) must now include social engineering and phishing attacks as part of efforts to test their systems, Federal Risk and Authorization Management Program (FedRAMP) officials said last week. The FedRAMP Program Management Office detailed the changes in the new Penetration Test Guidance issued July 6. “The new […]
Tags
Spear
No Category Set!