diff --git a/.jekyll-metadata b/.jekyll-metadata
deleted file mode 100644
index 035aed3..0000000
Binary files a/.jekyll-metadata and /dev/null differ
diff --git a/_data/navigation.yml b/_data/navigation.yml
index be91a03..3699f5a 100644
--- a/_data/navigation.yml
+++ b/_data/navigation.yml
@@ -20,8 +20,6 @@ primary:
href: /news
- text: People
href: /people
- - text: Playbook
- href: https://ato-asap.github.io/playbook
- text: Guide
href: /guide
- text: Contact
diff --git a/_guide/introduction.md b/_guide/introduction.md
index 896bf07..27184c0 100644
--- a/_guide/introduction.md
+++ b/_guide/introduction.md
@@ -11,4 +11,6 @@ categories:
Welcome to the OpenATO Guide.
-Our goal with this guide is to make it easy for everyone in government (public and private sector) to understand the authory to operate (ATO) process and how they can better address security as it pertains to their specific role.
+Technology platforms are continuously evolving, CVEs are growing at 20% a year, and threats are increasing probably faster. No single group (contractor or agency) is up to the task of staying abreast of all the changes, yet we must. A path forward is to open the process up to community collaboration so that all can benefit from the updates made at the edges by other parties.
+
+The platform needs to be open to encourage sharing. Catalog baselines, agency Profiles and system Components should contain little or no sensitive information. Even SSPs and Assessment Plans can, for the most part, be open and shared. (Of course, the Assessment Results containing system vulnerabilities and POA&Ms may be sensitive.) The goal is to slowly trim-tab the ship toward a fluid, evolving ecosystem of assertions and tests (covering the inventory of hardware, software, policy and processes) and away from static "paper" SSPs/ATOs.
diff --git a/_guide/resources.md b/_guide/resources.md
index 427ca1c..5f6e379 100644
--- a/_guide/resources.md
+++ b/_guide/resources.md
@@ -9,5 +9,6 @@ categories:
---
-* [ATO ASAP: Let’s finally fix the security compliance problem](https://fcw.com/articles/2021/02/04/comment-lazzeri-automate-ato.aspx) (*FCW*)
-* [Rethinking the process of attaining ATOs](https://govmatters.tv/rethinking-the-process-of-attaining-atos/) (*Government Matters*)
\ No newline at end of file
+* [Policy recommendations for improving the ATO process through Compliance as Code](https://medium.com/civicactions/policy-recommendations-for-improving-the-ato-process-through-compliance-as-code-524e3005fceb)
+* [ATO ASAP: Let’s finally fix the security compliance problem](https://www.nextgov.com/modernization/2021/02/ato-asap-lets-finally-fix-the-security-compliance-problem/258357/) (*FCW*)
+* [Rethinking the process of attaining ATOs](https://www.youtube.com/watch?v=C9WAhI3cXb0) (*Government Matters*)
diff --git a/_guide/solution.md b/_guide/solution.md
index a919055..197f6e5 100644
--- a/_guide/solution.md
+++ b/_guide/solution.md
@@ -5,7 +5,6 @@ description: How we can streamline the authority to operate process.
excerpt:
sidenav: docs
categories:
- -
-
---
+With Compliance as Code as a base, a library of reusble and locally configurable component definitions can be created. These are best shared as Open Source so that experts across multiple domains can review and enhance as vulnerabilities are discovered and mitigated and the threat landscape changes.
diff --git a/_guide/stakeholders.md b/_guide/stakeholders.md
index 607d9cd..5a3ee26 100644
--- a/_guide/stakeholders.md
+++ b/_guide/stakeholders.md
@@ -17,9 +17,7 @@ Key stakeholders include:
* Security professionals
* Acquisition professionals
* Audit and assessment personnel
-* Baseline authors
-* Tool developers
+* System and component developers
* Policy authors
* Bureaucracy hackers
* Industry
-* Media
diff --git a/_layouts/post.html b/_layouts/post.html
index e81efe2..66c4e9b 100644
--- a/_layouts/post.html
+++ b/_layouts/post.html
@@ -41,7 +41,7 @@
{% endif %}
diff --git a/_people/mary-lazzeri.md b/_people/mary-lazzeri.md
deleted file mode 100644
index ec89b48..0000000
--- a/_people/mary-lazzeri.md
+++ /dev/null
@@ -1,19 +0,0 @@
----
-type: team
-published: 1
-author: mary-lazzeri
-name: Mary Lazzeri
-image: mary-lazzeri.jpg
-categories:
- - Security and compliance
-linkedin: https://www.linkedin.com/in/marylazzeri/
-twitter:
-github:
-gitlab:
-drupal:
-speakerdeck:
-website:
-
----
-
-Mary Lazzeri is a team member of ATO ASAP.
\ No newline at end of file
diff --git a/_posts/2021-01-01-day-one-project.md b/_posts/2021-01-01-day-one-project.md
index 1a2d323..51eb63d 100644
--- a/_posts/2021-01-01-day-one-project.md
+++ b/_posts/2021-01-01-day-one-project.md
@@ -3,11 +3,11 @@ layout: post
title: "Day One Project: Compliance as Code and Improving the ATO Process"
date: 2021-01-01 08:00:00 -0800
description: We co-wrote a white paper for Day One Project focused on improving the ATO Process.
-author: mary-lazzeri
+author: fen-labalme
categories: featured
image: card-power.png
---
-We co-wrote a white paper for Day One Project focused on improving the ATO Process. The authors included CivicAction's Mary Lazzeri and Fen Labalme and GovReady's Dayton Williams and Greg Elin.
+We co-wrote a white paper for Day One Project focused on improving the ATO Process. The authors included CivicAction's Fen Labalme and Mary Lazzeri and GovReady's Dayton Williams and Greg Elin.
-Full post: [Day One Project: Compliance as Code and Improving the ATO Process](https://www.dayoneproject.org/post/compliance-as-code-and-improving-the-ato-process)
\ No newline at end of file
+Full post: [Day One Project: Compliance as Code and Improving the ATO Process](https://fas.org/publication/compliance-as-code-and-improving-the-ato-process/)
diff --git a/_posts/2021-02-16-policy-recomendations-for-improving-the-ato-process.md b/_posts/2021-02-16-policy-recomendations-for-improving-the-ato-process.md
new file mode 100644
index 0000000..44a9c29
--- /dev/null
+++ b/_posts/2021-02-16-policy-recomendations-for-improving-the-ato-process.md
@@ -0,0 +1,13 @@
+---
+layout: post
+title: "Policy recommendations for improving the ATO process through Compliance as Code"
+date: 2021-02-16 08:00:00 -0800
+description: How federal agencies can remove barriers to better, faster security
+author: fen-labalme
+categories: featured
+image: card-power.png
+---
+
+Suggestions for actionable steps to improve IT security compliance on a national scale.
+
+Full post: [Policy recommendations for improving the ATO process through Compliance as Code](https://medium.com/civicactions/policy-recommendations-for-improving-the-ato-process-through-compliance-as-code-524e3005fceb)
diff --git a/_posts/2021-02-19-hello-world.md b/_posts/2021-02-19-hello-world.md
deleted file mode 100644
index 075a669..0000000
--- a/_posts/2021-02-19-hello-world.md
+++ /dev/null
@@ -1,17 +0,0 @@
----
-layout: post
-title: "Hello world"
-date: 2021-02-19 08:00:00 -0800
-description: Welcome to OpenATO.
-author: fen-labalme
-categories:
-image: card-power.png
----
-
-Stay tuned. We're just getting started.
-
-In the meantime, take a look around:
-
-* [We're open.](/open)
-* [Join us](/join)
-* [News](/news)
diff --git a/_posts/2021-02-29-fcw-ato-asap-lets-finally-fix-the-security compliance problem.md b/_posts/2021-02-29-fcw-ato-asap-lets-finally-fix-the-security compliance problem.md
deleted file mode 100644
index f50cb70..0000000
--- a/_posts/2021-02-29-fcw-ato-asap-lets-finally-fix-the-security compliance problem.md
+++ /dev/null
@@ -1,17 +0,0 @@
----
-layout: post
-title: "FCW: ATO ASAP: Let’s finally fix the security compliance problem"
-date: 2021-02-19 08:00:00 -0800
-description: FCW published a guest editorial we wrote on the streamlining the authority to operate process.
-author: mary-lazzeri
-categories: featured
-image: card-power.png
----
-
-*FCW* published a guest editorial we wrote on the streamlining the authority to operate process.
-
-From the post:
-
-> If we collaborate and take deliberate steps to integrate automation, we can unlock the bureaucratic inertia that has stalled compliance modernization and fix the ATO problem once and for all.
-
-Full post: [ATO ASAP: Let’s finally fix the security compliance problem](https://www.nextgov.com/modernization/2021/02/ato-asap-lets-finally-fix-the-security-compliance-problem/258357/)
diff --git a/_posts/2021-02-29-government-matters-rethinking-the-process-of-attaining-atos.md b/_posts/2021-02-29-government-matters-rethinking-the-process-of-attaining-atos.md
deleted file mode 100644
index 885b0ea..0000000
--- a/_posts/2021-02-29-government-matters-rethinking-the-process-of-attaining-atos.md
+++ /dev/null
@@ -1,13 +0,0 @@
----
-layout: post
-title: "Government Matters: Rethinking the process of attaining ATOs"
-date: 2021-02-19 08:00:00 -0800
-description: We talked with Government Matters about the steps we propose on rethinking the system for obtaining an Authority to Operate.
-author: mary-lazzeri
-categories: featured
-image: card-power.png
----
-
-[We talked with Government Matters](https://govmatters.tv/rethinking-the-process-of-attaining-atos/) about the steps we propose on rethinking the system for obtaining an Authority to Operate.
-
-Full interview: [Rethinking the process of attaining ATOs](https://govmatters.tv/rethinking-the-process-of-attaining-atos/)
\ No newline at end of file
diff --git a/_posts/2021-03-22-fcw-streamlining-government-security-with-a-federal-compliance-library.md b/_posts/2021-03-22-fcw-streamlining-government-security-with-a-federal-compliance-library.md
deleted file mode 100644
index c67464d..0000000
--- a/_posts/2021-03-22-fcw-streamlining-government-security-with-a-federal-compliance-library.md
+++ /dev/null
@@ -1,19 +0,0 @@
----
-layout: post
-title: "FCW: Streamlining government security with a Federal Compliance Library"
-date: 2021-03-22 08:00:00 -0800
-description: FCW published a guest editorial we wrote on building a Federal Compliance Library to help streamline the authority to operate process.
-author: mary-lazzeri
-categories: featured
-image: card-power.png
----
-
-*FCW* published a guest editorial we wrote on building a Federal Compliance Library to help streamline the authority to operate process.
-
-From the post:
-
-> When agencies can seamlessly tap into a communal resource to share and collaborate on commonly used components, they will have more time to focus on security postures that are truly unique and require more attention.
-
-> By building a Federal Compliance Library based on open, iterative, collaborative principles, the federal government technology community will go further, faster.
-
-Full post: [ATO ASAP: Streamlining government security with a Federal Compliance Library](https://fcw.com/articles/2021/03/22/comment-lazzeri-ato-asap.aspx)
diff --git a/_sass/uswds/src/core/_functions.scss b/_sass/uswds/src/core/_functions.scss
index 9679f07..b173a87 100644
--- a/_sass/uswds/src/core/_functions.scss
+++ b/_sass/uswds/src/core/_functions.scss
@@ -3,7 +3,6 @@
Functions
----------------------------------------
*/
-@use 'sass:math';
// The following vars need to be set
@@ -57,7 +56,7 @@ Remove the unit of a length
@function strip-unit($number) {
@if type-of($number) == "number" and not unitless($number) {
- @return math.div($number, ($number * 0 + 1));
+ @return ($number / ($number * 0 + 1));
}
@return $number;
diff --git a/_site/404.html b/_site/404.html
index f20b129..e382ff4 100644
--- a/_site/404.html
+++ b/_site/404.html
@@ -124,14 +124,6 @@
-
With Compliance as Code as a base, a library of reusble and locally configurable component definitions can be created. These are best shared as Open Source so that experts across multiple domains can review and enhance as vulnerabilities are discovered and mitigated and the threat landscape changes.
+
OpenATO seeks to open the closed world of security to sharing, collaboration and community much in the same way that the open source software community has opened the world of creating software.
Day One Project: Compliance as Code and Improving t
-
We co-wrote a white paper for Day One Project focused on improving the ATO Process. The authors included CivicAction’s Mary Lazzeri and Fen Labalme and GovReady’s Dayton Williams and Greg Elin.
+
We co-wrote a white paper for Day One Project focused on improving the ATO Process. The authors included CivicAction’s Fen Labalme and Mary Lazzeri and GovReady’s Dayton Williams and Greg Elin.
FCW published a guest editorial we wrote on the streamlining the authority to operate process.
-
-
From the post:
-
-
-
If we collaborate and take deliberate steps to integrate automation, we can unlock the bureaucratic inertia that has stalled compliance modernization and fix the ATO problem once and for all.
FCW published a guest editorial we wrote on building a Federal Compliance Library to help streamline the authority to operate process.
-
-
From the post:
-
-
-
When agencies can seamlessly tap into a communal resource to share and collaborate on commonly used components, they will have more time to focus on security postures that are truly unique and require more attention.
-
-
-
-
By building a Federal Compliance Library based on open, iterative, collaborative principles, the federal government technology community will go further, faster.
- Fen leads security and compliance for [CivicActions](https://civicactions.com).
+
Fen leads security and compliance for CivicActions.
@@ -270,11 +256,11 @@
Hello world
-Help improve this page
+Help improve this page
diff --git a/_site/sitemap.xml b/_site/sitemap.xml
index 85fd1e7..e925aa3 100644
--- a/_site/sitemap.xml
+++ b/_site/sitemap.xml
@@ -2,7 +2,7 @@
http://localhost:4000/guide/introduction
-2024-03-19T16:08:24-04:00
+2024-03-29T15:10:11-04:00http://localhost:4000/guide/problem
@@ -10,55 +10,39 @@
http://localhost:4000/guide/resources
-2024-03-08T17:31:34-05:00
+2024-03-29T15:10:11-04:00http://localhost:4000/guide/solution
-2024-03-08T17:31:34-05:00
+2024-03-29T15:10:11-04:00http://localhost:4000/guide/stakeholders
-2024-03-08T17:31:34-05:00
+2024-03-29T15:10:11-04:00http://localhost:4000/people/fen-labalme
-2024-03-19T16:08:24-04:00
-
-
-http://localhost:4000/people/mary-lazzeri
-2024-03-08T17:31:34-05:00
+2024-03-19T16:10:22-04:00http://localhost:4000/posts/day-one-project
-2024-03-08T17:31:34-05:00
-
-
-http://localhost:4000/posts/hello-world
-2024-03-19T16:08:24-04:00
-
-
-http://localhost:4000/posts/fcw-ato-asap-lets-finally-fix-the-security-compliance-problem
-2024-03-19T16:08:24-04:00
-
-
-http://localhost:4000/posts/government-matters-rethinking-the-process-of-attaining-atos
-2024-03-08T17:31:34-05:00
+2024-03-29T15:10:11-04:00
-http://localhost:4000/posts/fcw-streamlining-government-security-with-a-federal-compliance-library
-2024-03-19T16:08:24-04:00
+http://localhost:4000/posts/policy-recomendations-for-improving-the-ato-process
+2024-03-29T15:10:11-04:00http://localhost:4000/posts/cybersecurity-notes
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/about
-2024-03-19T16:08:24-04:00
+2024-03-29T15:10:11-04:00http://localhost:4000/accessibility
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/colophon
@@ -66,11 +50,11 @@
http://localhost:4000/conduct
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/contact
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/federal-compliance-library
@@ -78,35 +62,35 @@
http://localhost:4000/guide
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/
-2024-03-19T16:08:24-04:00
+2024-03-29T15:10:11-04:00http://localhost:4000/news/
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/join
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/license
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/open
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/people
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/playbook
-2024-03-19T16:08:24-04:00
+2024-03-19T16:10:22-04:00http://localhost:4000/assets/img/icons/18F_feather/18F-Feather-Icons--all.pdf
diff --git a/assets/img/people/luke-fretwell.png b/assets/img/people/luke-fretwell.png
deleted file mode 100644
index 32a0147..0000000
Binary files a/assets/img/people/luke-fretwell.png and /dev/null differ
diff --git a/assets/img/people/marlena-medford.jpg b/assets/img/people/marlena-medford.jpg
deleted file mode 100644
index 08cab37..0000000
Binary files a/assets/img/people/marlena-medford.jpg and /dev/null differ
diff --git a/assets/img/people/mary-lazzeri.jpg b/assets/img/people/mary-lazzeri.jpg
deleted file mode 100644
index bc76dff..0000000
Binary files a/assets/img/people/mary-lazzeri.jpg and /dev/null differ
diff --git a/pages/about.md b/pages/about.md
index 627a596..57b9bbb 100644
--- a/pages/about.md
+++ b/pages/about.md
@@ -7,7 +7,7 @@ permalink: /about
OpenATO is an [open project and community](open).
-With Compliance as Code as a base, a library of reusble and locally configurable component definitions can be created. These are best shared as Open Source so that experts across multiple domains can review and enhance as vulnerabilities are discovered and mitigated and the threat landscape changes.
+OpenATO seeks to open the closed world of security to sharing, collaboration and community much in the same way that the open source software community has opened the world of creating software.
## Our work
* [Project board](https://github.com/openato/website/projects/1)
diff --git a/pages/home.md b/pages/home.md
index 5192c89..1c0752c 100644
--- a/pages/home.md
+++ b/pages/home.md
@@ -5,7 +5,7 @@ description: OpenATO is an open project and community to support streamlining th
layout: home
hero:
- image:
+ image:
callout:
alt:
text: OpenATO together.
-
-
- OpenATO ALPHA
-
- 