This document outlines the mission, scope, and objectives of the Common Cloud Controls (CCC) Duplication Reduction WG.
This WG facilitates the research of existing frameworks for the Common Cloud Controls project community through evaluation of tools, assets, and partners that exist in the cloud controls space that can help reduce the effort required to meet the overall CCC goals for the CCC contributors and consumers.
Efforts from this group will ensure that the CCC efforts do not duplicate pre-existing standards, and instead are net new contributions to the broader ecosystem aligned to the specific needs of the financial services industry.
This group will:
- Identify existing resources that we should investigate for use toward various CCC WG goals, including tools, approaches, or frameworks.
- Develop a set of principles and goals to consider for evaluating resources
- Evaluate each resource's ability to meet project goals
- Identify how each resource can help achieve a goal, in a way that can serve as a starting point or reference for other WGs
- Document research that has been done on each resource
- Provide a clear set of what's missing from existing frameworks such as NIST, ISO, OSCAL, and MITRE, with how the work being done in CCC augments or improves these systems
- Collaborate with the Community Structure WG to create new guidelines or policies regarding the use of specific resources, with links to documented research and reasoning
- Provide advice and support related to duplicative efforts to all WGs
The following items will be maintained by this WG in the project repository:
- Resource Overview Document
- Featured Resources Guides
- Resource Evaluation Guide
The following activities will not be performed by this group:
- Integrating resources into project workflows or outputs
- Ensuring compliance with guidelines or policies
This WG will remain compliant with all applicable community policies. At the guidance of the WG Lead, this group will seek to implement guidelines approved by the Community Structure WG.
The membership structure of this working group:
- WG Lead: Jared Lambert
- SC Sponsor: Eddie Knight
- This group is not authorized to create independent sub-groups
- This working group will use the mail group [email protected] for regular communications.
- A group member should represent this WG on any calls scheduled by the SC for participation by the full CCC project community.
Any functional changes to this charter must be approved through a majority vote by the SC. Minor changes such as formatting may be merged upon approval from any SC member.