| ISO 27001-2013 |
International or National Standard |
52 |
197 |
17 |
| NIST SP 800-53 R5 |
International or National Standard |
38 |
19 |
11 |
| EU General Data Protection Regulation (GDPR) |
Regulation or Statute |
31 |
171 |
15 |
| NIST CSF 1.1 |
International or National Standard |
30 |
43 |
19 |
| NIST SP 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations |
Best Practice Guideline |
21 |
10 |
7 |
| ISO/IEC 27002:2022 |
International or National Standard |
19 |
1 |
3 |
| PCI DSS Defined Approach Requirements, Version 4.0 |
International or National Standard |
18 |
5 |
3 |
| Sarbanes-Oxley Act of 2002 |
Bill or Act |
17 |
2 |
4 |
| PCI DSS v3.2.1 |
Contractual Obligation |
17 |
5 |
4 |
| CIS Controls, V8 |
Best Practice Guideline |
16 |
7 |
7 |
| ISO/IEC 27701:2019 |
International or National Standard |
13 |
18 |
8 |
| Cloud Controls Matrix, v4.0 |
Self-Regulatory Body Requirement |
12 |
2 |
0 |
| ISO 27002 |
International or National Standard |
12 |
8 |
3 |
| NIST SP 800-53 |
International or National Standard |
11 |
18 |
2 |
| SOC2 |
Safe Harbor |
11 |
2 |
0 |
| 23 NYCRR 500 |
Regulation or Statute |
9 |
14 |
3 |
| HIPAA |
Bill or Act |
9 |
10 |
5 |
| SSAE 18 |
Safe Harbor |
9 |
6 |
3 |
| California Consumer Privacy Act of 2018 |
Bill or Act |
8 |
42 |
1 |
| EU 8th Directive |
Regulation or Statute |
8 |
3 |
0 |
| hipaa security rule |
Regulation or Statute |
8 |
5 |
1 |
| NIST Privacy Framework |
International or National Standard |
8 |
14 |
7 |
| Brazilian General Data Protection Law (LGPD) |
Bill or Act |
7 |
3 |
0 |
| BSI Cloud Computing Compliance Controls Catalogue (C5) |
Best Practice Guideline |
6 |
14 |
3 |
| CobiT |
Safe Harbor |
6 |
164 |
1 |
| ISO 22301- Societal Security - Business Continuity Management Systems - Requirements |
International or National Standard |
6 |
16 |
0 |
| MAS TRM |
Contractual Obligation |
6 |
38 |
0 |
| Notice on Cyber Hygiene |
Bill or Act |
6 |
1 |
0 |
| PCI DSS Defined Approach Testing Procedures, Version 4.0 |
International or National Standard |
6 |
5 |
4 |
| Red Book (Condensed) |
International or National Standard |
6 |
12 |
7 |
| BSI-Standard 100-2 |
International or National Standard |
5 |
8 |
0 |
| CIS Amazon Web Services Foundations Benchmark, v1.4.0, Level 2 |
Best Practice Guideline |
5 |
0 |
0 |
| CIS Amazon Web Services Foundations, Benchmark v1.4.0, Level 1 |
Best Practice Guideline |
5 |
0 |
0 |
| Control Baselines for Information Systems and Organizations, NIST Special Publication 800-53B, High Impact Baseline, October 2020 |
International or National Standard |
5 |
9 |
8 |
| Control Baselines for Information Systems and Organizations, NIST Special Publication 800-53B, Moderate Impact Baseline, October 2020 |
International or National Standard |
5 |
8 |
5 |
| FFIEC CAT |
Best Practice Guideline |
5 |
13 |
1 |
| Guidelines for Reducing and Mitigating Hacking Risks Associated with Internet Trading |
Regulation or Statute |
5 |
2 |
2 |
| ISO/IEC 27002:2013(E) |
International or National Standard |
5 |
144 |
13 |
| MAS Guidelines on Outsourcing |
Bill or Act |
5 |
1 |
0 |
| MAS-TRMG-2021 |
Contractual Obligation |
5 |
4 |
0 |
| NIST CSF 1.0 |
International or National Standard |
5 |
11 |
2 |
| NIST SP 800-37r2 |
International or National Standard |
5 |
11 |
4 |
| Notice No.: CMG-N02, Notice On Technology Risk Management |
Self-Regulatory Body Requirement |
5 |
3 |
0 |
| Payments Service Directive 2 |
International or National Standard |
5 |
4 |
0 |
| Personal Information Protection Law of the People's Republic of China |
Statutes (Bills or Acts) |
5 |
0 |
0 |
| TSP Section 100: 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy |
Self-Regulatory Body Requirement |
5 |
4 |
2 |
| 6 CFR Part 27 |
Regulation or Statute |
4 |
0 |
0 |
| AICPA Reporting on Controls at a Service Organization SOC-2 |
Safe Harbor |
4 |
140 |
4 |
| CIS Microsoft Windows Server 2019 Benchmark, v1.2.1, Level 1 |
Best Practice Guideline |
4 |
0 |
0 |
| NIST SP 800-122 |
Best Practice Guideline |
4 |
0 |
0 |
