magoo / minimalist-risk-management
A minimalist risk management program!
☆124Updated 2 years ago
Alternatives and similar repositories for minimalist-risk-management:
Users that are interested in minimalist-risk-management are comparing it to the libraries listed below
- Repository for the Open Information Security Risk Universe☆63Updated 2 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆71Updated 4 months ago
- ☆44Updated last year
- read the docs version of risk management☆24Updated last year
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆306Updated 8 months ago
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆114Updated 7 months ago
- NIST CyberSecurity Framework management tool☆161Updated 3 years ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆186Updated 2 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 5 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆111Updated 2 weeks ago
- Segment's Threat Modeling training for our engineers☆241Updated 3 years ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆224Updated 2 years ago
- a curated list of useful threat modeling resources☆128Updated 7 months ago
- Template SOC2 Policy Authority - documentation pipeline☆108Updated 4 years ago
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆669Updated 6 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- Repository for the Open Security Reference Architecture☆125Updated last month
- Vendor Security Model Contract☆97Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 3 months ago
- OWASP Foundation Web Respository☆23Updated last month
- The SOCless automation framework☆137Updated last week
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆48Updated last year
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆59Updated 4 years ago
- MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU☆104Updated last week
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆37Updated 3 years ago
- ☆63Updated 2 years ago
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆32Updated 3 months ago
- ISO 27001 certification requires organizations to prove their compliance with the Standard with appropriate documentation, which can run …☆86Updated 4 years ago
- OpenControl-formatted industry standards and requirement documents☆45Updated last year
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago