IT Security Specialist, Office of Information Systems Management
National Institute of Standards and Technology
John Connor is on the CIO’s side of NIST and has been working on cloud assessments for NIST and the Dept of Commerce for many years. He teaches various agencies (both inside and outside of Commerce) on how to assess cloud vendors against FISMA/FedRAMP. He has also worked with FedRAMP from the beginning (on one of their very first tiger teams). He can bring expertise on how we at NIST assess cloud vendors leveraging FedRAMP and other independent assessment while still following the FISMA law.