TristanToye / SOC2-guideLinks
Documenting SOC 2 tools and processes
☆95Updated 3 years ago
Alternatives and similar repositories for SOC2-guide
Users that are interested in SOC2-guide are comparing it to the libraries listed below
Sorting:
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆329Updated last year
- Template SOC2 Policy Authority - documentation pipeline☆134Updated 5 years ago
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆44Updated last month
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆89Updated last year
- A Software as a Service (SaaS) log collection framework.☆179Updated last week
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆103Updated 4 years ago
- Security policies for Tailscale☆305Updated 2 months ago
- The SOCless automation framework☆140Updated 9 months ago
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking☆623Updated 4 months ago
- A minimalist risk management program!☆145Updated 3 years ago
- A list of cloud security tools and vendors.☆180Updated last year
- An open source, self-service GRC tool to automate security assessments and compliance.☆196Updated 11 months ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆192Updated last year
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- Compliance automation framework, focused on SOC2☆1,442Updated 3 years ago
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆49Updated 4 years ago
- Graph-based security analysis for everyone☆351Updated last year
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆387Updated 3 months ago
- Scan domains and return data based on trustworthy email best practices☆214Updated this week
- Convert cloudtrail data to MITRE ATT&CK Sightings☆81Updated 3 years ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆172Updated last year
- read the docs version of risk management☆26Updated 2 years ago
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆25Updated 3 years ago
- Boilerplate Incident Response Plan from "Starting Up Security"☆164Updated 5 years ago
- Built-in Panther detection rules and policies☆427Updated this week
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆273Updated this week
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆407Updated this week
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated 3 weeks ago
- Automate the creation of a System Security Plan (SSP)☆43Updated 5 months ago
- Connect compliance frameworks like SOC 2, GDPR, and ISO 27001 using Secure Control Frameworks mappings.☆19Updated last year