HHS

Mapping NIST Controls to ISO Standards

The National Institute of Standards and Technology is revising a map to link its core security controls, Special Publication 800-53 Rev. 4: Security and Privacy ...

Six Control Families That Turn Regulatory Chaos Into A Working Control System

Group regulatory expectations into a small set of stable control families and types, then run your program around those, not around clauses, articles and acronyms.
Dark Reading

Mapping Compliance Proof To Risk-Based Controls

For years now, the risk management gurus of the world have lamented the scourge of check-box compliance, urging organizations to make more security decisions based on sound risk management. The ...