JupiterOne / security-policy-templates
A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
☆306Updated 8 months ago
Alternatives and similar repositories for security-policy-templates:
Users that are interested in security-policy-templates are comparing it to the libraries listed below
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated 8 months ago
- NIST CyberSecurity Framework management tool☆161Updated 3 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆71Updated 4 months ago
- Template SOC2 Policy Authority - documentation pipeline☆108Updated 4 years ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆224Updated 2 years ago
- NIST SP 800-53 content and other OSCAL content examples☆322Updated this week
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆114Updated 7 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆380Updated 10 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆111Updated 2 weeks ago
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps…☆508Updated last month
- Built-in Panther detection rules and policies☆360Updated this week
- An open source, self-service GRC tool to automate security assessments and compliance.☆186Updated 2 months ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆150Updated 2 months ago
- A minimalist risk management program!☆124Updated 2 years ago
- FedRAMP Automation☆304Updated this week
- A collection of awesome security controls mapping for solutions across frameworks.☆55Updated 4 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- Documenting SOC 2 tools and processes☆76Updated 3 years ago
- ☆370Updated 11 months ago
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆32Updated 3 months ago
- OWASP Foundation Web Respository☆23Updated last month
- Segment's Threat Modeling training for our engineers☆241Updated 3 years ago
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆195Updated this week
- Open Cloud Security Posture Management Engine☆337Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- The SOCless automation framework☆137Updated last week
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆48Updated last year
- Compliance automation framework, focused on SOC2☆1,346Updated 2 years ago
- Graph-based security analysis for everyone☆342Updated last year