Compliance Standard Services
1.CIS Controls v8 (Center for Internet Security)
• IG1
• IG2
• IG3
2. Cyber Insurance Readiness:
- Cyber Liability & Theft
3. HIPAA (Health Insurance Protabilty and Accountability Act):
• Security Rule
• Privacy Rule
• Breach Nofitfication Rule
4. PCI-DSS (Payment Card Industry Data Security Standard):
• SAQ A
• SAQ A-EP
• SAQ B-IP
• SAQ C
• SAQ C-VT
5. POPIA (Protection of Personal Information Act):
• Condition 7 – Security Safeguards
6. GDPR (General Data Protection Regulation):
• Controller and Processor
7. FTC Safeguards Rule (Part 314): (Federal Trade Commission – CyberSecurity for Finanical Institutions)
8. NIST 800-171 (National Institue of Standards and Technology)
9. NIST CSF (National Institue of Standards and Technology Cybersecurity Framework)
10. NYS DFS Part 500 (23 New York Codes, Rules and Regulations for Financial Services):
• 23 NYCRR Part 500
11. SOC 2 – Trust Services Criteria (Service Organization Control Type 2)
12. CIS Critical Security Controls (Center for Internet Security):
• IG1 (sub requirements)
13. Essential 8 (cybersecurity framework for Australia – ACSC):
• Maturity Level 1
• Maturity Level 2
• Maturity Level 3
14. CMMC 2.0 (Cybersecurity Maturity Model Certification):
• Level 1
• Level 2