magoo / minimalist-risk-managementLinks
A minimalist risk management program!
☆139Updated 3 years ago
Alternatives and similar repositories for minimalist-risk-management
Users that are interested in minimalist-risk-management are comparing it to the libraries listed below
Sorting:
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆321Updated last year
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆123Updated last year
- read the docs version of risk management☆26Updated 2 years ago
- Repository for the Open Information Security Risk Universe☆64Updated 3 years ago
- ☆48Updated 2 years ago
- a curated list of useful threat modeling resources☆139Updated last year
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆72Updated 10 months ago
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆44Updated 3 years ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆193Updated 8 months ago
- Vendor Security Model Contract☆98Updated 3 years ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆132Updated last week
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated last year
- Template SOC2 Policy Authority - documentation pipeline☆116Updated 4 years ago
- Repository for the Open Security Reference Architecture☆128Updated 2 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated last year
- MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU☆108Updated 3 weeks ago
- Segment's Threat Modeling training for our engineers☆245Updated 4 years ago
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆62Updated 5 years ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆250Updated last month
- The SOCless automation framework☆140Updated 6 months ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆102Updated 4 years ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 3 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆66Updated 2 months ago
- GCP CSPM using Google Sheets☆36Updated 4 months ago
- A collection of awesome security controls mapping for solutions across frameworks.☆56Updated 5 years ago
- ☆87Updated 10 months ago