Compliance

FedRamp
Federal Risk and Authorization Management Program (FedRAMP) is meant to provide a standardized approach to security assessment, authorization, and continuou...
Fri, 26 Feb, 2021 at 5:45 AM
FERPA
The Family Educational Rights and Privacy Act (FERPA) is a federal law enacted in 1974 that protects the privacy of student education records. ControlDes...
Fri, 26 Feb, 2021 at 5:46 AM
FISMA
The Federal Information Security Management Act (FISMA) is a United States federal law passed in 2002 that made it a requirement for federal agencies to dev...
Fri, 26 Feb, 2021 at 5:46 AM
GCP CIS Benchmarks (Google Cloud Platform Foundation CIS Benchmark 1.1.0)
The CIS Google Cloud Platform Foundation Benchmark 1.1.0 covers foundational elements of Google Cloud Platform. The recommendations provided are important s...
Fri, 26 Feb, 2021 at 5:47 AM
GDPR
The GDPR is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. While primarily process-driven, ther...
Fri, 26 Feb, 2021 at 5:47 AM
HIPAA
The Health Insurance Portability and Accountability Act of 1996 is United States legislation that provides data privacy and security provisions for safeguar...
Fri, 26 Feb, 2021 at 5:48 AM
HITRUST CSF
The HITRUST Common Security Framework (HITRUST CSF) is a certifiable framework that provides organizations with a comprehensive, flexible, and efficient app...
Fri, 26 Feb, 2021 at 5:48 AM
ISO 27001
ISO 27001 is an international standard that helps organizations manage information security. ControlDescription A.5.1.1 Policies for Information Security...
Fri, 26 Feb, 2021 at 5:48 AM
ISO 27017
ISO 27017 is the Code of practice for information security controls based on ISO/IEC 27002 for cloud services. ControlDescription CLD.6.3.1 Shared roles ...
Fri, 26 Feb, 2021 at 5:49 AM
ISO 27018
Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors. ControlDescription A 9.2 Retentio...
Fri, 26 Feb, 2021 at 5:49 AM