TristanToye / SOC2-guide
Documenting SOC 2 tools and processes
☆76Updated 3 years ago
Alternatives and similar repositories for SOC2-guide:
Users that are interested in SOC2-guide are comparing it to the libraries listed below
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆32Updated 3 months ago
- Template SOC2 Policy Authority - documentation pipeline☆108Updated 4 years ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆306Updated 8 months ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated 8 months ago
- The SOCless automation framework☆137Updated last week
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps…☆508Updated last month
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆37Updated 3 years ago
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆195Updated this week
- A list of cloud security tools and vendors.☆146Updated 5 months ago
- A Software as a Service (SaaS) log collection framework.☆148Updated this week
- ☆44Updated last year
- A minimalist risk management program!☆124Updated 2 years ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆180Updated 5 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆161Updated 9 months ago
- ☆255Updated 2 months ago
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆380Updated this week
- ☆112Updated last month
- Security policies for Tailscale☆281Updated last month
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆99Updated 3 years ago
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆114Updated 7 months ago
- Automate permissions to your cloud and critical applications.☆238Updated last year
- A collection of projects supporting AWS Integration☆152Updated 2 weeks ago
- IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, hum…☆287Updated 2 months ago
- A multi-vault secret injection tool for safely injecting secrets into app environment☆116Updated 2 weeks ago
- Coalfire AWS RAMP/pak Reference Architecture☆36Updated 5 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆224Updated 2 years ago
- OCSF Documentation☆123Updated this week
- Automate the creation of a System Security Plan (SSP)☆36Updated 3 weeks ago