JupiterOne / security-policy-builderLinks
CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
☆84Updated last year
Alternatives and similar repositories for security-policy-builder
Users that are interested in security-policy-builder are comparing it to the libraries listed below
Sorting:
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆316Updated last year
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- A library of data visualization dashboard templates that can be imported into JupiterOne.☆17Updated 5 months ago
- Alert rules for JupiterOne security auditing☆12Updated last week
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆41Updated 3 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated last month
- An open source, self-service GRC tool to automate security assessments and compliance.☆192Updated 6 months ago
- OWASP Foundation Web Respository☆24Updated 4 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆52Updated 3 months ago
- Template SOC2 Policy Authority - documentation pipeline☆113Updated 4 years ago
- A collection of awesome security controls mapping for solutions across frameworks.☆56Updated 5 years ago
- Generate security policies and documents based on KPNs templates.☆38Updated 5 years ago
- A mirror of ISM OSCAL documents. The authoritative source can be found at https://www.cyber.gov.au/ism/oscal.☆35Updated 2 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 2 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆72Updated 8 months ago
- ☆46Updated 2 years ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆153Updated last year
- The SOCless automation framework☆140Updated 4 months ago
- Controls Assessment Specification☆70Updated 2 months ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 5 years ago
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- Automate the creation of a System Security Plan (SSP)☆38Updated last week
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆128Updated last week
- OpenControl-formatted industry standards and requirement documents☆46Updated last year
- Continuous Audit Metrics☆27Updated last year
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆188Updated 9 months ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆166Updated 2 months ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- Repository for the Open Information Security Risk Universe☆64Updated 2 years ago