Application Onboarding Overview
Game Warden's onboarding process is structured into phases that guide your organization from initial engagement through production deployment of your application. The phases vary depending on your environment.
Choose your onboarding path
Before reviewing the phases, identify which environment your application is being deployed into. If you are unsure, see Not sure which environment you're on?
Phases at a glance
DoW FedRAMP Commercial
Phase
Description
Kickoff
Initial engagement, requirements gathering, and program alignment
Configuration
Environment setup, pipeline configuration, and integration of application components
Security Review
BoE completion, SAST/DAST scanning, and compliance validation
Approve
Submission of Deployment Passport package to the Authorizing Official for Certificate to Field (CtF)/Software Approval issuance
Validation
End-to-end testing and verification in the target environment
Production
Application is authorized and live in the production environment
Phase
Description
Pre-engagement & Kickoff
Alignment on FedRAMP authorization scope, initial engagement, and requirements gathering
Configuration
Environment setup, pipeline configuration, and integration of application components
Gap Assessment
Review of existing controls against FedRAMP baseline to identify outstanding requirements
Security Review
System Security Plan (SSP) completion, SAST/DAST scanning, and compliance validation
Authorization
Submission for FedRAMP authorization review and approval
Phase
Description
Kickoff
Initial engagement, requirements gathering, and program alignment
Configuration
Environment setup, pipeline configuration, and integration of application components
Security Review
BoE completion, SAST/DAST scanning, and compliance validation
Validation
End-to-end testing and verification in the target environment
Production
Application is authorized and live in the production environment