Map your Infrastructure as Code to any major compliance framework. Same Terraform, multiple compliance mappings.
Trust Service Criteria for security, availability, processing integrity, confidentiality, and privacy.
International standard for information security management systems (ISMS).
Prioritized security controls from the Center for Internet Security.
Previous version of CIS critical security controls.
Health Insurance Portability and Accountability Act security requirements for PHI.
Payment Card Industry Data Security Standard. Latest version with enhanced security requirements.
Previous PCI-DSS version, still in use during transition period.
Comprehensive catalog of security and privacy controls for federal information systems.
Protecting Controlled Unclassified Information (CUI) in non-federal systems.
Cybersecurity Framework for critical infrastructure protection.
Cybersecurity Maturity Model Certification for defense contractors.
Federal Risk and Authorization Management Program for cloud services.
AWS-native controls from the AWS Control Catalog service.
AWS Well-Architected Framework security pillar best practices.
CIS benchmarks specific to AWS infrastructure hardening.
Previous CIS AWS benchmark version.
Legacy CIS AWS benchmark for older environments.
Australian Cyber Security Centre Information Security Manual.
Australian essential mitigation strategies to protect against cyber threats.
Canadian Centre for Cyber Security cloud control profile.
Upload your Terraform, CDK, or CloudFormation. See which controls you satisfy across all 20 frameworks.
Get Started Free