OpenRMF® Professional in International Government

Download the International Government Data Sheet


Use Any Cyber Compliance Framework

Any Cyber Compliance

Adopting the NIST Risk Management Framework, FedRAMP, CSF, CMMC, HITRUST, or use your own country's framework

Use the STIG checklists, scans, POAM and our Compliance Engine against your required Framework Controls

Track your compliance with the same tools, reports, and documentation required for other frameworks

Automate data reports, test plan, generate documentation

Automate continuous monitoring through integrations, API, scripts

Export your STIG Checklists (CKL / CKLB / XLSX) as well as POAM SSP, SAR, and RAR (XLSX) for your government system of record

Selling to the US Government

Selling software, platforms, systems to the US Government requires compliance and due diligence

Use the same STIG checklists, scans, POAM and our Compliance Engine against your required RMF or FedRAMP Controls

Have a known, good, truthful assessment of your software, platforms, and systems and track compliance along the way

Generate data reports, test plan, SAR, RAR, and SSP documentation already standard across the US Government

Export your STIG Checklists (CKL / CKLB) as well as POAM SSP, SAR, and RAR (XLSX) for your government system of record





NIST Risk Management Framework for Selling to US Govt




NIST Risk Management Framework for FMS

Foreign Military Sales (FMS)

FMS requires nations to have proper cyber compliance and cyber hygiene

Not all non-US governments have RMF experts on staff or are familiar with how to scan, assess, and create proper artifacts

Use OpenRMF® Professional to easily track STIG checklists, scans, POAM and compliance engine against required RMF or FedRAMP Controls

Generate data reports, test plan, SAR, RAR, and SSP documentation already standard across the US Government

Export your STIG Checklists (CKL / CKLB) as well as POAM SSP, SAR, and RAR (XLSX) for your government system of record