<h2>Deadline: 2026-03-31</h2><p><strong>30 days remaining</strong> until the FedRAMP Quarterly Vulnerability Scan deadline.</p><h3>Overview</h3><p>Q1 quarterly authenticated vulnerability scanning for all FedRAMP systems.</p><h3>Requirements Checklist</h3><ul><li>Conduct authenticated internal scans</li><li>Conduct external scans</li><li>Remediate critical findings within 30 days</li><li>Remediate high findings within 90 days</li></ul><h3>Penalty for Non-Compliance</h3><p>Unresolved critical vulnerabilities can lead to authorization actions.</p><h3>Who This Applies To</h3><ul><li>FedRAMP Authorized CSPs</li></ul>