The Compliance Controls and Mapping Database v2.0!
This version of the controls and mappings database is a significant improvement over the previous version. The database now includes a mesh of mappings from different trusted sources. For example, HiTrust v8 was the basis for a number of the primary control mappings. In addition to the Hitrust mappings, a number of additional mappings from various trusted sources (e.g., NIST) have also been included.
- Security controls, implementation guidance, and mappings for:
- NIST 800-53 r4,
- PCI DSS v3.x,
- ISO 27001:2013,
- AICPA SOC2/SOC3
- CIS Sans Top 20
- Cyber Security Framework
- (more will be added)
Access the Database
The latest version of the security controls mapping tool is now available on SecurityCheckbox.com.