CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +70 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber, NCSC, ECC, SCF and so much more
Now that we have a good foundation for decoupling, we can use the status of applied controls to preset the compliance of specific requirements. Multiple options are possible:
from an audit, have a power-up, when triggered, the popup will ask if it should set the requirements to compliant or partially compliant and a double confirmation before updating the status.
from a requirement assessment, have a power up, like "sync to controls status" and would update the individual requirements
have it as an x-ray rule that can have a hyperlink to trigger the sync
AndrzejRPiotrowski
commented
3 weeks ago
Now that we have a good foundation for decoupling, we can use the status of applied controls to preset the compliance of specific requirements. Multiple options are possible: