gapps icon indicating copy to clipboard operation
gapps copied to clipboard
verified publisher icon bmarsh9

Create mapping between controls of the various frameworks

Open bmarsh9 opened this issue 3 years ago • 4 comments

Ideally if you complete a SOC2 project, you should be able to automatically map it to the other frameworks and see what controls are already satisfied/missing

bmarsh9 avatar Jan 31 '23 15:01 bmarsh9

opensourceGRC has a public mapping across several frameworks (does not include SOC), CIS also has several mappings (includes SOC) https://www.opensourcegrc.org/compliance-requirements https://www.cisecurity.org/controls/cis-controls-navigator/

sbrunston avatar Feb 02 '23 00:02 sbrunston

Thanks - that looks like a good place to explore

bmarsh9 avatar Feb 02 '23 01:02 bmarsh9

As an idea, provide an interface to do this through UI, it's more flexible to the users.

RootMePLS avatar Mar 31 '23 17:03 RootMePLS

Similar to opensourceGRC, the Secure Controls Framework has also premapped one to many different security/compliance frameworks together: https://securecontrolsframework.com/

NoahJaehnert avatar May 04 '23 17:05 NoahJaehnert