The Compliance Controls and Mapping Database is here!
After several weeks of hard work, I am please to present a free database of the various major security compliance frameworks. This MS Access database contains the following:
- Security controls for NIST 800-53, FISMA, FedRAMP, PCI DSS v2, HIPAA, ISO 27001, ISO 30000, SOC2, and CSA (Cloud Security Alliance),
- Control descriptions, supporting text, and implementation guidance.
- Test procedures for PCI and NIST 800-53A
- Common controls mapping using the CSA Cloud Controls Matrix
UPDATE: Version 2.0 of the controls database is now available!
A new version of the compliance controls database is available here.