Open MaurizioCasciano opened 1 year ago
Hi @ginger-anderson @aj-stein-nist @david-waltermire-nist, I'd like to ask you how should we provide this mapping using the OSCAL standard? I have seen that the OSCAL OSCAL Control mapping mainly controls of different frameworks https://pages.nist.gov/OSCAL/reference/develop/mapping/json-definitions/
The OSCAL Control mapping format can be used to describe how a collection of security controls and related control enhancements relate to another collection of controls. The root of the Control Catalog format is mapping-collection.
On the CIS Controls Navigator https://www.cisecurity.org/controls/cis-controls-navigator/ it is possible to see the mappings between CIS Controls and the MITRE Enterprise ATT&CK v8.2
E.g.
CISC-1.1 --> T1200
We should also include information about the target framework (domain, version, ...) and allow multiple targets mappings from a single controller to multiple targets from different sources.
How could we proceed with this feature, mapping CIS Control --> MITRE ATT&CK Techniques
?
Hello,
You should be able to find what you're looking for at https://workbench.cisecurity.org/files/3664
FYI
Hi, are there any plans to include the mappings between CIS Controls and MITRE ATT&CK techniques?
Something similar to what has been provided here https://github.com/CISecurity/CISControls_OSCAL/blob/main/src/mappings/SP_800_53MOD_CISControlsv8_Mapping.xml for NIST SP 800-53 Rev 5 Moderate
E.g.