News

Here is the list of the updates carried out in August 2020, in preparation for the twentieth anniversary of the UCF®. Merging and Retiring Common Controls Changed CC_ID Changed Control Name Change Type Surviving CC_ID ...

Why Doesn’t Anyone Agree? NIST, ISO, ISACA, and HiTrust disagree on what maps to what. Compliance frameworks sometimes look good on the surface, with each one trying to convince you that they’re the real deal. ...

Can organizations have personality types? Absolutely! All organizations are different in at least some facet. However, the major facets of differences can be found in the maturity of their leadership types. Leadership has to be ...

Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) within the Defense Health Agency to ensure assigned DoD systems/Enclaves/Networks can obtain and maintain Authorization to Operate (ATO) and Authorization to Connect (ATC) ...

Responsibilities: Develop and implement Cyber security and Cyber Crime Programs • Develop and implement Security functions like Risk Management, Audit Management, BC/DR Management, Vulnerability management, IAM, End-point Security, SOC 2 etc. • Develop Cyber Defiance ...

45 CFR Part 164 – Security and PrivacyAD ID: 3204Status: ReleasedAvailability: FreeCitation Format: § (Legal)Document Type: 45 CFR Part 164 – Security and PrivacyOriginator: US Department of Health and Human ServicesParent Category: North AmericaEffective Date: 2000-12-28Language: engClick here to launch this Authority Document in ...

The UCF Team invites you to review and provide feedback on the mapping of 45 CFR Part 164 - ...

Final Report on EBA Guidelines on outsourcing arrangementsAD ID: 3192Status: ReleasedAvailability: FreeCitation Format: § (Legal)Document Type: Final Report on EBA Guidelines on outsourcing arrangementsOriginator: European Banking AuthorityParent Category: EuropeEffective Date: 2019-02-25Language: engClick here to launch this Authority Document in the Common Controls HubThis Authority ...

Awhile back, I posted about educating ourselves on communicating compliance plans. We’ve now got THREE free resources for everyone to try and (please) comment on: – An update to the eBook we wrote on organizational ...

The UCF Team invites you to review and provide feedback on the mapping of Final Report on E ...