Compliance

Industry/Category	Standard/Framework	Description
General Security & Privacy	ISO/IEC 27001	Information security management systems
	ISO/IEC 27002	Code of practice for information security controls
	ISO/IEC 27018	Code of practice for PII in public clouds
	DNIST SP 800-53	Security controls for federal systems
	SOC 1	Controls relevant to internal control over financial reporting
	SOC 2	Controls relevant to security, availability, etc.
	SOC 3	Trust services criteria for security, availability, etc.
Healthcare	HIPAA	U.S. law for protection of patients' medical records
	HITRUST CSF	Security framework for healthcare
	GLBA	U.S. law for financial institutions' data sharing
	PCI-DSS	Global standard for handling branded credit cards
	SWIFT CSP	Security baseline for global and regional banks
Energy	NERC CIP	Standards for North America's bulk electric system
	HFISMA	U.S. framework to protect government information
	FedRAMP	Security for cloud products used by U.S. government
Retail	PCI-DSS	Relevant for credit card transactions
Cloud Services	CSA STAR	Framework for cloud providers' security practices
Industrial/SCADA	ISA/IEC 62443	Securing industrial control system networks
European Data Protection	GDPR	EU regulation on data protection and privacy
California Privacy Law	CCPA	California consumers' data privacy rights
General Privacy Standards	ISO/IEC 27701	Extension for privacy information management
Critical Infrastructure	NIST Cybersecurity Framework	Guidelines for U.S. private sector cybersecurity programs
CIS Controls	CIS 18	Best practices to counter prevalent threats
Automotive	ISO/SAE 21434	Cybersecurity engineering for road vehicles
	Automotive SPICE	Framework for software development processes
Telecommunications	3GPP	Collaboration between telecom standards associations
Aerospace and Defense	DO-178C	Guidelines for airborne system software
Manufacturing	IEC 62443	Security standards for IACS

LOGO

Home

Product

About us

Terms of use

Contact Us

@pinochle 2023. All rights reserved