TristanToye / SOC2-guideLinks
Documenting SOC 2 tools and processes
☆99Updated 4 years ago
Alternatives and similar repositories for SOC2-guide
Users that are interested in SOC2-guide are comparing it to the libraries listed below
Sorting:
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆339Updated last month
- Template SOC2 Policy Authority - documentation pipeline☆138Updated 5 years ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆88Updated this week
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆48Updated last month
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking☆639Updated 6 months ago
- A Software as a Service (SaaS) log collection framework.☆182Updated 2 weeks ago
- The SOCless automation framework☆140Updated 11 months ago
- Security policies for Tailscale☆306Updated 2 weeks ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆103Updated 4 years ago
- A minimalist risk management program!☆148Updated 3 years ago
- A list of cloud security tools and vendors.☆184Updated last year
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆52Updated 4 years ago
- Compliance automation framework, focused on SOC2☆1,466Updated 3 years ago
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆390Updated last week
- An open source, self-service GRC tool to automate security assessments and compliance.☆203Updated last year
- An awesome list of OSS developer-first security tools☆187Updated 8 months ago
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆265Updated 2 months ago
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆410Updated this week
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆55Updated last month
- A collection of models for organizing, prioritizing, and understanding cybersecurity and information risk management concepts.☆25Updated last year
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆289Updated this week
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆126Updated last year
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆117Updated 3 weeks ago
- A lightweight library to sanitize data provided to AI tools☆28Updated 2 years ago
- Connect compliance frameworks like SOC 2, GDPR, and ISO 27001 using Secure Control Frameworks mappings.☆21Updated this week
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆262Updated 6 months ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆196Updated last year
- cloudgrep is grep for cloud storage☆326Updated 11 months ago
- PII detection platform, leveraging human-in-the-loop AI☆53Updated last year
- ☆50Updated last month