search

bmarsh9 / gapps

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
Other
440 stars 99 forks source link

Add additional guidance for controls #31

Open bmarsh9 opened 1 year ago

bmarsh9 commented 1 year ago

Template

    <h2>Recommendation</h2>
    <p>Information about the recommendation</p>

The above string can be added in the guidance field in the JSON list of controls. e.g.

    {
        "name": "Limit information system access to authorized users,  processes acting on behalf of authorized users,  or devices (including other information systems).",
        "description": "Limit information system access to authorized users,  processes acting on behalf of authorized users,  or devices (including other information systems).",
        "ref_code": "ac.1.001",
        "level": "1",
        "system_level": false,
        "category": "access control",
        "subcategory": "access control",
        "references": "",
        "guidance":"<p>testing</p>",
        "dti": "easy",
        "dtc": "easy",
        "meta": {},
        "subcontrols": []
    },