Skip to content

Latest commit

 

History

History
35 lines (31 loc) · 3.19 KB

standards-compliance.md

File metadata and controls

35 lines (31 loc) · 3.19 KB

Standards & Compliance Resources

International Standards

Name Website URL Category Sub-Category Content Type Update Frequency Access Type Format Description
ISO/IEC 27001 iso.org/isoiec-27001 Standards Management Framework 3-5 Years Paid Document Information security standard
NIST CSF nist.gov/cyberframework Standards Framework Guidelines 2-3 Years Free Web, PDF Cybersecurity framework
ISO 27701 iso.org/27701 Standards Privacy Framework 3-5 Years Paid Document Privacy management
CIS Controls cisecurity.org/controls Standards Security Framework Annual Free/Member Web, PDF Security best practices
COBIT isaca.org/cobit Standards Governance Framework 3-4 Years Paid Document IT governance framework

Industry-Specific Standards

Name Website URL Category Sub-Category Content Type Update Frequency Access Type Format Description
PCI DSS pcisecuritystandards.org Standards Payment Standards 2-3 Years Free Web, PDF Payment card security
HIPAA hhs.gov/hipaa Standards Healthcare Regulation As Updated Free Web Healthcare privacy
NERC CIP nerc.com/cip Standards Energy Standards Annual Member Web, PDF Critical infrastructure
CMMC acq.osd.mil/cmmc Standards Defense Framework As Updated Free Web, PDF Defense contractor security
FedRAMP fedramp.gov Standards Government Framework Continuous Free Web, PDF Cloud security assessment

Privacy Regulations

Name Website URL Category Sub-Category Content Type Update Frequency Access Type Format Description
GDPR gdpr.eu Standards Privacy Regulation As Updated Free Web EU data protection
CCPA oag.ca.gov/privacy/ccpa Standards Privacy Regulation As Updated Free Web California privacy law
PIPEDA priv.gc.ca Standards Privacy Regulation As Updated Free Web Canadian privacy law
LGPD lgpd-brazil.info Standards Privacy Regulation As Updated Free Web Brazilian privacy law

Control Frameworks

Name Website URL Category Sub-Category Content Type Update Frequency Access Type Format Description
SOC 2 aicpa.org/soc2 Standards Compliance Framework Annual Paid Document Service organization control
SOX sec.gov/sox Standards Financial Regulation As Updated Free Web Financial controls
NIST 800-53 nvd.nist.gov/800-53 Standards Security Controls 2-3 Years Free Web, PDF Security controls
ISO 27002 iso.org/27002 Standards Security Controls 3-5 Years Paid Document Security controls guidance