SEA-01—Secure Engineering Principles

Weight: 10

>Control Description

Mechanisms exist to facilitate the implementation of industry-recognized cybersecurity and data protection practices in the specification, design, development, implementation and modification of Technology Assets, Applications and/or Services (TAAS).

>Control Description

>Cross-Framework Mappings

NIST SP 800-53 r5

NIST CSF 2.0

PCI DSS v4.0.1

CIS Controls v8

SOC 2 TSC

CMMC v2.0

NIST SP 800-171

FedRAMP Rev 5

NIST AI RMF

Canada ITSP 10.171

OSFI B-13

Australia ISM

India SEBI Guidelines

New Zealand HISF

New Zealand HISF Suppliers

EU DORA

Saudi Arabia IoT Guidelines

Spain ENS

UAE NIAF

UK CAF

UK DEF STAN 05-138

SOC 2 TSC (Detailed)

CIS Controls v8.1 (Detailed)

GovRAMP

IMO Maritime Cyber Risk

ISO 27002:2022

NAIC Model Law 668

NIST SP 800-161

NIST SP 800-171 Rev 3

NIST SP 800-171A Rev 3

NIST SP 800-171A

TISAX

Data Privacy Management Principles

FBI CJIS

US Data Privacy Framework

DHS TIC 3.0

CISA CPG

DoD ZTA Reference Architecture

GLBA (16 CFR 314)

HIPAA Simplification 2013

NERC CIP

NY DFS 23 NYCRR 500

Ask AI