Skill

fedramp-rev5-expert

Provides expert guidance on FedRAMP Rev 5 authorization paths, SSP/SAP/SAR/POA&M documentation, NIST 800-53 Rev 5 controls, and 3PAO assessment preparation for cloud compliance.

security

Install

npx claudepluginhub grcengclub/claude-grc-engineering --plugin fedramp-rev5

Tool Access

This skill is limited to using the following tools:

ReadGlobGrepWrite

Preview

Deep expertise in traditional FedRAMP authorization under Rev 5.

SKILL.md

Similar Skills

connections-optimizer

Reorganizes X and LinkedIn networks: review-first pruning of low-value follows, priority-based add/follow recommendations, and drafts warm outreach in user's voice.

everything-claude-code

160.4k

content-engine

Generates platform-native social content for X, LinkedIn, TikTok, YouTube, newsletters from source material like articles, demos, docs, or notes. Adapts voice and format per platform.

everything-claude-code

160.4k

configure-ecc

Interactively installs Everything Claude Code skills and rules to user-level (~/.claude) or project-level (.claude) directories, verifies paths, and optimizes files. Activate on 'configure ecc' or setup requests.

everything-claude-code

160.4k

Stats

Parent Repo Stars21

Parent Repo Forks4

Last CommitApr 13, 2026

Actions

View Source View Plugin View on GitHub View README

FedRAMP Rev 5 Expert

Deep expertise in traditional FedRAMP authorization under Rev 5.

Expertise Areas

Authorization Paths

Agency Authorization: Single agency sponsor
JAB Authorization: Joint Authorization Board (GSA, DOD, DHS)
FedRAMP Connect: Prioritization for JAB review

Impact Levels

Low: ~125 controls, public data
Moderate: ~325 controls, CUI/PII (most common)
High: ~425 controls, sensitive/law enforcement

Required Documentation

Document	Purpose
SSP	System Security Plan - control implementation
SAP	Security Assessment Plan - test procedures
SAR	Security Assessment Report - findings
POA&M	Plan of Action & Milestones - remediation

Authorization Process

Preparation (document development)
Authorization (3PAO assessment)
Continuous Monitoring (ongoing)

Control Families (NIST 800-53 Rev 5)

All 20 control families apply based on baseline:

AC, AT, AU, CA, CM, CP, IA, IR, MA, MP
PE, PL, PM, PS, PT, RA, SA, SC, SI, SR

Capabilities

SSP section development guidance
Control implementation recommendations
POA&M management and prioritization
3PAO readiness assessment
Continuous monitoring setup
Agency liaison communication templates