Authority Documents in the Unified Compliance Framework
The Unified Compliance Framework incorporates all the IT controls from nearly 500 Authority Documents. Below is a partial list of the Authority Documents in the UCF. You can also view a complete list of Authority Documents here.
The
- Sarbanes Oxley (PCAOB, SAS 94, AICPA, Sec 17, COSO ERM, A123)
- Banking and Finance (Basel II, Gramm Leach Bliley, GLBA, FFIEC)
- NASD NSYE (Sec 17)
- Healthcare and Life Science (HIPAA, NIST, CMS, FDA)
- Energy (FERC, NERC)
- Credit Card (PCI DSS, Visa CISP, Amex, MasterCard, BBB)
- Federal Security (E Sign, UETA, FISMA, FISCAM, FIPS, Clinger Cohen Act, GAO, DOD, CISWIG, OMB, NCUA, CTPAT, more)
- IRS (Rev Proc 97 22, 98 25, 501c3)
- Records Management (ISO, DIRKS, Sedona, more)
- NIST (800 14, 18, 26, 30, 33, 34, 40, 41, 53, 60, 61, 64)
- General (Cobit 3 & 4, NFPA, ISF, ISSA, CERT, IIA, more)
- US Federal Privacy (Cable, Telemarketing, SPAM, COPPA, Drivers, Family, Video Privacy, Spector Leahy, more)
- US State Laws (all states)
- System Configuration (CI Security for Solaris, HP UX, Red Hat, SuSE, AIX, NIST Novell, Apple OS X, Vista, DISA, more)
The International tab covers all of the authority documents we are tracking from around the world (in English) and is broken up into the following categories:
- EU (Data protection, SafeHarbor, EC ECNS DPP, OECD, more)
-
- Latin American (
- Other Europe (22 countries)
- Asia and Pacific Rim (9 countries)
- ITIL (Infrastructure, Service, Application, Security)
- ISO (13 controls)