- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-30-2022 01:47 AM
Hi Experts,
I would like to know if is there a standard build already available in UCF for GRC standard frameworks (the basic compliance frameworks that contain the authority documents, citations, and controls).
Is there a possibility to obtain these data as excel files without getting the UCF subscription?
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-30-2022 04:07 AM - edited 11-30-2022 05:08 AM
Hi Shafraz,
there are a lot authority documents available for you in UCF. Here are a few
| AICPA Reporting on Controls at a Service Organization SOC-2 |
| CobiT |
| CSIS 20 Critical Security Controls |
| FedRAMP Baseline Security Controls |
| ISO 27001-2013 |
| ISO 31000 R 2009 |
| NIST SP 800-53 R4 High Impact |
| PCI DSS 3.0 Requirements |
| EU General Data Protection Regulation (GDPR) |
| California Consumer Privacy Act of 2018 |
You can use search authority page to check whether an authority document available in UCF or no
https://www.unifiedcompliance.com/products/search-authority-documents/
I have seen many customers use manually upload citations to ServiceNow but that's also mean they need to keep eye on new citations coming out or citations that are no longer in use
I hope this helps.
Ahmed
Please mark my answer as Correct / Helpful based on the Impact
Community Rising Star 2022
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-30-2022 04:07 AM - edited 11-30-2022 05:08 AM
Hi Shafraz,
there are a lot authority documents available for you in UCF. Here are a few
| AICPA Reporting on Controls at a Service Organization SOC-2 |
| CobiT |
| CSIS 20 Critical Security Controls |
| FedRAMP Baseline Security Controls |
| ISO 27001-2013 |
| ISO 31000 R 2009 |
| NIST SP 800-53 R4 High Impact |
| PCI DSS 3.0 Requirements |
| EU General Data Protection Regulation (GDPR) |
| California Consumer Privacy Act of 2018 |
You can use search authority page to check whether an authority document available in UCF or no
https://www.unifiedcompliance.com/products/search-authority-documents/
I have seen many customers use manually upload citations to ServiceNow but that's also mean they need to keep eye on new citations coming out or citations that are no longer in use
I hope this helps.
Ahmed
Please mark my answer as Correct / Helpful based on the Impact
Community Rising Star 2022
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-01-2022 11:39 PM
Hi @ShafrazMubarak ,
That becomes a tiring job as you don't get hold of all of the Authority documents and the citations , you will have to go through each regulations for example GDPR,ISO, and search for Authority documents ,citations and derive control objectives and policies.
With UCF subscription, most of the things are already ready to be used by you.
