The National Institute of Standards and Technology is partnering with the Federal Risk Authorization Management Program or FedRAMP to remove some of the arduous parts of the cloud security certification process. Through the development of a common machine-readable language known as the Open Security Controls Assessment Language (OSCAL), NIST is bringing automation to the program. David Waltermire, the technical lead for OSCAL at NIST, and Milica Green, a compliance subject matter expert with Telos Corporation, spoke to Jason Miller on Ask the CIO.