>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

TDA-05Developer Architecture & Design

Weight: 8

>Control Description

Mechanisms exist to require the developers of Technology Assets, Applications and/or Services (TAAS) to produce a design specification and security architecture that: (1) Is consistent with and supportive of the organization's security architecture which is established within and is an integrated part of the organization's enterprise architecture; (2) Accurately and completely describes the required security functionality and the allocation of security controls among physical and logical components; and (3) Expresses how individual security functions, mechanisms and services work together to provide required security capabilities and a unified approach to protection.

>Cross-Framework Mappings

NIST SP 800-53 r5

SA-17
Compare

PCI DSS v4.0.1

6.2.1
Compare
6.2.2
Compare
6.2.3
Compare
6.2.4
Compare

CIS Controls v8

16.1
Compare
16.10
Compare

FedRAMP Rev 5

SA-17
Compare

NIST AI RMF

GOVERN-4.2

Canada ITSP 10.171

03.16.01
Compare

CIS Controls v8.1 (Detailed)

16.1
Compare

GovRAMP

SA-17
Compare

ISO 27002:2022

8.3
Compare
8.27
Compare

NIST SP 800-161

CM-8(10)
Compare
SA-17
Compare

NIST SP 800-171 Rev 3

03.16.01
Compare

NIST SP 800-218 SSDF

PW.4.2
Compare
RV.1.1
Compare

CISA SSDAF

1.d
Compare

Executive Order 14028

4e(i)(D)
Compare

Ask AI

Configure your API key to use AI features.