#41 - Discussing FedRAMP 20x

What do DC sneakers, HR-approved marriage advice, and compliance robots have in common? They’re all part of this episode as Kenny and Mike dive into the bold future of FedRAMP 20X — and why it’s finally time to fix the pain points for both private companies and government agencies.

Here’s what they cover:

- The (not) shift in risk ownership — why agencies have always owned the risk and the PMO will focus on standards

- The myth of "set-it-and-forget-it" security — and the need for continuous monitoring

- The problem with screenshot audits — and smarter ways to prove assurance

- The role of auditors vs. automation — balancing trust and verification

- Why developers don’t love security — and how to make it less painful

- The future for faster authorizations, and why you shouldn't wait for the FedRAMP changes to happen to get FedRAMP Authorized.

If you’ve ever yelled at your SSP or cried over a screenshot audit, this one’s for you.

Sign up for the FedRAMP working groups here:
https://www.fedramp.gov/20x/working-groups/

Learn more about Paramify here: https://www.paramify.com/

Learn more about Kenny: https://www.linkedin.com/in/kenny-g-scott/

Learn about Mike: https://www.linkedin.com/in/mikecschreiner/