RegScale.
Sponsor session SANS · CSF 2026
Tuesday, May 5 · 11:00 AM ET · 45 min

Engineering teams clear FedRAMP authorization in 90 days, not 18 months.

Continuous Controls Monitoring (CCM) and the future of FedRAMP authorization. James Bond and Travis Howerton walk how the architecture works — and why federal contractors evaluating now have a 6–12 month lead when FedRAMP 20x launches.

Register through SANS See the agenda ↓
DateTuesday, May 5, 2026
Time11:00 AM ET · 45 min
FormatSponsor session · SANS-hosted
TrackEmerging Technologies

Why this webinar

Federal contractors face a familiar trade-off. There's a different path.

Why anything

The traditional path treats engineering velocity and compliance gates as a trade-off. Authorization runs 12–18 months and costs hundreds of thousands in consulting fees. Engineering teams ship weekly; compliance gates take a month. Feature delivery stalls.

Why now

FedRAMP 20x kicks off 2026–2027 — explicitly built around continuous monitoring. Gartner 2026 named continuous monitoring as a distinct category. Federal contractors evaluating in 2026 have a 6–12 month lead when 20x launches.

Why us

RegScale is FedRAMP High Authorized — we operate on ourselves as proof. Founder team brings practitioner heritage from U.S. NSA and AWS compliance programs. Architecture is true middleware: most users never log in.

The proof — verbatim metrics

What customers actually achieve, in numbers.

90 days

FedRAMP High authorization in 90 days vs. the traditional 12–18 months.

verbatim · proof points register

60%

Audit prep time reduced by 60%.

verbatim · proof points register

8x

AI-assisted control writing is 8x faster than manual authoring.

verbatim · proof points register

<3 min

AI Auditor runs comprehensive SSP evaluations in under 3 minutes.

verbatim · proof points register

Customer-grounded — verbatim

RegScale itself is FedRAMP High Authorized — operated using the RegScale platform.

May 5 · 45 minutes

What we'll cover.

  1. The CCM architecturevs. point-in-time scanning. Why continuous monitoring is structural, not a feature comparison.
  2. Customer proofFedRAMP High authorization in 90 days vs. the traditional 12–18 months — walked end-to-end.
  3. AI's roleAudit prep time reduced by 60%. Where AI compresses the work and where it doesn't.
  4. DevSecOps integrationRegScale as true middleware. Most users never log in. The integration story (CrowdStrike, GitLab, Snyk, Jira).
  5. Live Q&ABring your auditor questions, your boundary questions, your timeline questions.

Who you'll hear from

Practitioners — built and led by the people who needed it on the inside.

JB

James Bond

RegScale platform lead

Canonical credentials FedRAMP authorization architect
TH

Travis Howerton

CEO / Founder, RegScale

Canonical credentials Former CTO at U.S. NSA · Former federal CIO

Tuesday, May 5 · 11:00 AM ET. Register through SANS to attend live or get the recording.

Register Now