Sep 4, 2024 10:37:26 AM

Monthly Selected Authority Documents August, 2024

Matt H.

Here is a list of the 50 most selected Authority Documents in the Common Controls Hub this past month. We also list how many groups each Authority Document has been assigned to and how many initiatives it has been assigned to.

AD_common_name	AD_type	Selected	Groups	Initiatives
ISO/IEC 27001:2022	International or National Standard	29	10	4
NIST CSF 2.0	International or National Standard	29	4	1
EU General Data Protection Regulation (GDPR)	Regulation or Statute	26	189	20
ISO/IEC 27002:2022	International or National Standard	24	12	10
PCI DSS Defined Approach Requirements, Version 4.0	International or National Standard	24	17	6
ISO/IEC 27701:2019	International or National Standard	20	20	10
NIST SP 800-53 R5	International or National Standard	17	31	18
Sarbanes-Oxley Act of 2002	Bill or Act	16	7	6
SOC 2Â®, 2022	Audit Guideline	16	3	0
Digital Operational Resilience Act	Regulations	14	5	2
CIS Controls, V8	Best Practice Guideline	13	13	9
Cloud Controls Matrix, v4.0	Self-Regulatory Body Requirement	13	6	1
CMMC Level 2, v2.0	Best Practice Guideline	13	11	6
ISO/IEC 27017:2015(E)	Self-Regulatory Body Requirement	13	23	11
PCI DSS Defined Approach Testing Procedures, Version 4.0	International or National Standard	12	10	6
PCI DSS v3.2.1	Contractual Obligation	12	10	5
23 NYCRR 500	Regulations	11	7	5
BSI Cloud Computing Compliance Controls Catalogue (C5)	Best Practice Guideline	10	18	4
California Privacy Rights Act (CPRA)	Bill or Act	10	5	3
ISO 27001-2013	International or National Standard	10	221	23
NIST SP 800-53 Revision 5.1.1	International or National Standard	10	1	1
COSO Enterprise Risk Management (2017)	Best Practice Guideline	9	26	9
hipaa security rule	Regulation or Statute	9	7	2
ISO 22301- Societal Security - Business Continuity Management Systems - Requirements	International or National Standard	9	20	1
Red Book (Condensed)	International or National Standard	9	21	7
TSP Section 100: 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy	Self-Regulatory Body Requirement	9	7	3
California Consumer Privacy Act of 2018	Bill or Act	8	45	2
NIST AI 100-1	Best Practice Guideline	8	1	0
NIST SP 800 66	Safe Harbor	8	31	1
NIST SP 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations	International or National Standard	8	17	10
NIST SP 800-37r2	International or National Standard	8	14	5
NIST SP 800-39	International or National Standard	8	22	7
23 NYCRR 500	Regulation or Statute	7	35	10
CMMC Level 1, v2.0	Best Practice Guideline	7	9	5
COBIT 2019	Safe Harbor	7	9	2
Control Baselines for Information Systems and Organizations, NIST Special Publication 800-53B, Moderate Impact Baseline, October 2020	International or National Standard	7	11	6
FFIEC CAT	Best Practice Guideline	7	26	1
ISO 31000 R 2009	International or National Standard	7	171	1
ISO 31000:2018	International or National Standard	7	25	8
NIST SP 800-53 R4	International or National Standard	7	7	3
SWIFT Customer Security Controls Framework	Best Practice Guideline	7	1	0
Trust Services Criteria (with Revised Points of Focus â€“ 2022)	Self-Regulatory Body Requirement	7	7	3
COSO Internal Control - Integrated Framework	Self-Regulatory Body Requirement	6	24	8
FedRAMP Security Controls Baseline, 2018	Audit Guideline	6	2	4
FedRAMP Version 5 Moderate Baseline	Audit Guideline	6	0	0
ISO 22301:2019(E)	International or National Standard	6	1	2
ISO 27002	International or National Standard	6	8	5
ISO 9001:2015	International or National Standard	6	23	6
NIST Privacy Framework	International or National Standard	6	17	8
AICPA Trust Services	Audit Guideline	5	8	2

Monthly Selected Authority Documents August, 2024

Products

Partners

Resources

About