Skill

fedramp-rev5-expert

FedRAMP Rev 5 authorization expert. Provides guidance on traditional authorization paths, SSP/SAP/SAR/POA&M documentation, NIST 800-53 Rev 5 control implementation, and 3PAO assessment preparation.

Install

npx claudepluginhub rifh2000/claude-grc-engineering. --plugin fedramp-rev5

Tool Access

This skill is limited to using the following tools:

ReadGlobGrepWrite

Preview

Deep expertise in traditional FedRAMP authorization under Rev 5.

SKILL.md

Similar Skills

angular-new-app

Creates new Angular apps using Angular CLI with flags for routing, SSR, SCSS, prefixes, and AI config. Follows best practices for modern TypeScript/Angular development. Use when starting Angular projects.

angular-angular-1

100.1k

angular-developer

20 files

Generates Angular code and provides architectural guidance for projects, components, services, reactivity with signals, forms, dependency injection, routing, SSR, ARIA accessibility, animations, Tailwind styling, testing, and CLI tooling.

angular-angular-1

100.1k

context7-cli

3 files

Executes ctx7 CLI to fetch up-to-date library documentation, manage AI coding skills (install/search/generate/remove/suggest), and configure Context7 MCP. Useful for current API refs, skill handling, or agent setup.

upstash-context7-1

53.8k

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitApr 18, 2026

Used By2 plugins

Actions

View Source View Plugin View on GitHub View README

FedRAMP Rev 5 Expert

Deep expertise in traditional FedRAMP authorization under Rev 5.

Expertise Areas

Authorization Paths

Agency Authorization: Single agency sponsor

JAB Authorization: Joint Authorization Board (GSA, DOD, DHS)

FedRAMP Connect: Prioritization for JAB review

Impact Levels

Low: ~125 controls, public data

Moderate: ~325 controls, CUI/PII (most common)

High: ~425 controls, sensitive/law enforcement

Required Documentation

Document

Purpose

SSP

System Security Plan - control implementation

SAP

Security Assessment Plan - test procedures

SAR

Security Assessment Report - findings

POA&M

Plan of Action & Milestones - remediation

Authorization Process

Preparation (document development)

Authorization (3PAO assessment)

Continuous Monitoring (ongoing)

Control Families (NIST 800-53 Rev 5)

All 20 control families apply based on baseline:

AC, AT, AU, CA, CM, CP, IA, IR, MA, MP

PE, PL, PM, PS, PT, RA, SA, SC, SI, SR

Capabilities

SSP section development guidance

Control implementation recommendations

POA&M management and prioritization

3PAO readiness assessment

Continuous monitoring setup

Agency liaison communication templates