Manage multiple regulatory compliance frameworks and standards in one platform
NIST SP 800-53 defines how they manage their information security systems, in order to better protect both the agencies and private data. While NIST SP 800-53 applies to any federal organization (aside from national security agencies), many private sector entities have adopted controls from this framework and its guidelines cover any component of an information system that stores, processes or transmits information. More..
The Federal Financial Institutions Examination Council (FFIEC) is an interagency body comprising five banking regulators responsible for US federal government examinations of US financial institutions. The FFIEC creates uniform standards and principles and develops standardized reporting systems. More..
COBIT is an IT management framework developed by the ISACA global benchmarking association to help develop, organize and implement strategies around information management and governance. It allows enterprises to align existing controls with a variety of other standards and regulatory compliance requirements. More..
The California Consumer Privacy Act (CCPA) regulates how businesses handle the personal information (PI) of California residents. CCPA applies to any for-profit businesses in the world selling the personal information of more than 50,000 California residents annually, deriving more than 50 percent of annual revenue from such information or with an annual gross revenue exceeding $25 million. More..