NIST CSF
v2.0 — 106 controls
SOC 2
Trust Services Criteria
HIPAA
Security Rule controls
CMMC Level 1
Basic cyber hygiene
CISA CPG
Cybersecurity Performance Goals
Frameworks
7 controls across 4 frameworks.
Critical and high CVEs are patched within 14 days; all others within 30 days
Device Security / Device Security
CISA Known Exploited Vulnerabilities are remediated on priority timelines
Vulnerability Management / Vulnerability Management
Identify, report, and correct information system flaws in a timely manner
System & Info Integrity / Flaw Remediation
Update malware protection mechanisms when new releases are available
System & Info Integrity / Malware Protection
Vulnerability scans are performed
Detect / Continuous Monitoring
Vulnerabilities in assets are identified, validated, and recorded
Identify / Risk Assessment
Vulnerability management identifies and remediates security flaws
Security / System Operations
No results found
Try a different term or browse by framework or topic.
Search across all controls, frameworks, and topics.