search

finos / common-cloud-controls

FINOS Common Cloud Controls
https://www.finos.org/common-cloud-controls-project
Other
26 stars 25 forks source link

MITRE WG: Establish alignment with CCC Cloud Taxonomy Working Group for capturing Controls Testing Requirements #74

Open nas-hub opened 8 months ago

nas-hub commented 8 months ago

Establish alignment with CCC Cloud Taxonomy Working Group for capturing Controls Testing Requirements

Assumptions

  1. The CCC Cloud Taxonomy working group will be responsible for defining controls and their corresponding testing requirements.
  2. The controls defined as part of the CCC Control Catalog will include clearly defined testing requirements.

Objective

The objective is to establish a comprehensive set of Control Testing Requirements for each Control, enabling a thorough assessment of the effectiveness of these controls. The Controls Testing requirements will be articulated in plain English and translated into corresponding MITRE TTPs and abstract testing language like Gherkins.

mcleo-d commented 7 months ago

FYI - @mark-rushing - This items spans the MITRE and Taxonomy working groups in collaboration. I have added to your kanban to be tracked.

eddie-knight commented 5 months ago

Today's Taxonomy WG call determined that the group is happy to review and give feedback on a POC PR from the MITRE WG. The only expectation/requirement is that the output should live alongside the other service-level items in this repo.

@nas-hub is there anything else that needs to be discussed or done as part of this issue?