The Security Compliance Controls Mapping Database v3.0 is here!
This version of the controls mapping database has been re-written using Excel as a front-end. No more needing to go into Access and manually run your mapping queries. Now you can easily select which framework families you want to map in excel, and the database will generate your results on the fly!
About the Security Compliance Controls Mapping Database
The database was developed as a side project during my PhD Dissertation (on the NIST Cybersecurity Framework). We use the database during our risk assessment and maturity assessments as a way to provide our customers with additional value by helping them comply with multiple frameworks without spending additional time and resources to re-test for every control.
How are the Framework Families Mapped?
The database includes a mesh of mappings from different trusted sources. NIST, ISO, PCI, FFIEC (and more) each proving mappings to their own frameworks. This tool uses our own algorithms to create new mappings based on those original mappings.
Which Security Frameworks are included?
- NIST 800-53 r4,
- PCI DSS v3.x,
- ISO 27001:2013,
- AICPA SOC2/SOC3
- Hitrust v8
- CIS Sans Top 20
- Cyber Security Framework
- Cobit v5
- and more
How do I access the controls mapping tool?
Our brand new security controls mapping tool is available at SecurityCheckbox.com. You can map up to 5 frameworks.