Explore the NIST Open Security Controls Assessment Language (OSCAL) project in this 43-minute conference talk from RSA Conference. Discover how OSCAL simplifies security automation by standardizing control, implementation, and assessment information using an open, machine-readable format. Learn to leverage automation for securing systems against multiple standards, understand OSCAL's design and applications, and find out how to contribute to this emerging standard. Delve into the OSCAL Catalog Model, Profile Model, and Implementation Model, and grasp their significance in addressing the complexities of various security standards like COBIT, ISO/IEC 27001, NIST 800.53, and PCI. Gain insights from experts Anil Karmel and David Waltermire on overcoming major challenges in security controls assessment and implementing OSCAL effectively in your organization.