OSCAL Stakeholders

Our stakeholders are segmented, as is our industry, into constituencies with various needs.

How OSCAL Supports Your Role

Please select the roles that best describe your involvement, and then explore the relevant pages for more information about how you can utilize and contribute to OSCAL.

• Assessors/Auditors -- You are responsible for evaluating security-related information to determine whether systems meet compliance requirements and risk management objectives. Your role involves analyzing documentation, verifying implementation, and identifying gaps or vulnerabilities.
• Guideline/Regulatory Authors -- You create policy documents (such as catalogs, profiles, baselines, and overlays) that define, customize, and tailor security controls to guide organizations in managing cybersecurity risks.
• Security Professionals -- You are responsible for documenting the implementation and effectiveness of security controls within systems, ensuring they meet required standards and are properly applied to mitigate risks.
• Tool Developers -- You design and develop tools that automate and streamline cybersecurity processes, improving efficiency and precision. By creating solutions that enhance consistency and accuracy, you empower security teams to perform their tasks more effectively and at scale.

Get Involved

We are always eager to strengthen our connections and enable more collaboration with our community.

Whether you're interested in joining our Monthly Workshops or exploring our upcoming events, we invite you to get involved and make an impact. If you have any questions about getting involved or need more information, please contact us.