menu

News

1 new Authority Documents have been added to the UCF

July 15, 2019 | Weekly Updates

SWIFT Customer Security Controls Framework, Customer Security Programme
AD ID: 3006
Status: Released
Availability: With Membership
Citation Format: ID (Reference ID)
Document Type: SWIFT Customer Security Controls Framework, Customer Security Programme
Originator: SWIFT
Parent Category: International
Effective Date: 2018-08-10
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 85 citations mapped to 42 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-07-10.

Percent (%) of Citations with multiple mandates: 23.1%

Percent (%) of terms that were non-standard: 9.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 2.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 7.1% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 66.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 1.2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

July 8, 2019 | Weekly Updates

Circular 10/2017 (BA): Supervisory Requirements for IT in Financial Institutions
AD ID: 3011
Status: Released
Availability: Free
Citation Format: § (Legal) and ¶ (for bulleted Paragraphs)
Document Type: Circular 10/2017 (BA): Supervisory Requirements for IT in Financial Institutions
Originator: The Federal Financial Supervisory Authority (BaFin)
Parent Category: Europe
Effective Date: 2018-09-02
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 180 citations mapped to 1 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-07-03.

Percent (%) of Citations with multiple mandates: 45.8%

Percent (%) of terms that were non-standard: 13.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 19.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 1.1% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

June 17, 2019 | Weekly Updates

SWIFT Customer Security Controls Framework, Customer Security Programme
AD ID: 3006
Status: Restricted
Availability: With Membership
Citation Format: ID (Reference ID)
Document Type: SWIFT Customer Security Controls Framework, Customer Security Programme
Originator: SWIFT
Parent Category: International
Effective Date: 2018-08-10
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 85 citations mapped to 42 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-06-11.

Percent (%) of Citations with multiple mandates: 23.1%

Percent (%) of terms that were non-standard: 9.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 2.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 7.1% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 66.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 1.2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

February 21, 2019 | Weekly Updates

South Carolina Code of Laws, Title 38, Chapter 99 Insurance Data Security Act, Section 38-99-10 - 38-99-100
AD ID: 2971
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: South Carolina Code of Laws, Title 38, Chapter 99 Insurance Data Security Act, Section 38-99-10 - 38-99-100
Originator: South Carolina State Legislature
Parent Category: North America
Effective Date: 2019-01-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 213 citations mapped to 90 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-02-15.

Percent (%) of Citations with multiple mandates: 21.9%

Percent (%) of terms that were non-standard: 9.20% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 16.9% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 11.1% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

October 29, 2018 | Weekly Updates

CIS Controls
AD ID: 2956
Status: Released
Availability: With Membership
Citation Format: Control:
Document Type: CIS Controls
Originator: The Center for Internet Security
Parent Category: Security and Privacy Organizations
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 304 citations mapped to 224 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-10-26.

Percent (%) of Citations with multiple mandates: 40.8%

Percent (%) of terms that were non-standard: 11.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 24.7% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 6.6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

September 24, 2018 | Weekly Updates

Australian Privacy Act 1988
AD ID: 2950
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Australian Privacy Act 1988
Originator: Parliament of Australia
Parent Category: Australia-Oceania
Effective Date: 2018-02-22
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 355 citations mapped to 116 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-09-21.

Percent (%) of Citations with multiple mandates: 5.5%

Percent (%) of terms that were non-standard: 14.90% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 14.6% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

September 3, 2018 | Weekly Updates

ISO 9001 Quality Management systems - Requirements
AD ID: 2942
Status: Released
Availability: For Purchase
Citation Format: § (Legal) and ¶ (for bulleted Paragraphs)
Document Type: ISO 9001 Quality Management systems - Requirements
Originator: International Organization for Standardization
Parent Category: International
Effective Date: 2015-09-15
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 564 citations mapped to 208 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-08-31.

Percent (%) of Citations with multiple mandates: 22.4%

Percent (%) of terms that were non-standard: 26.70% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 31% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 8.3% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

August 27, 2018 | Weekly Updates

Enterprise Risk Management - Integrating with Strategy and Performance
AD ID: 2947
Status: Released
Availability: For Purchase
Citation Format: ID (Reference ID)
Document Type: Enterprise Risk Management - Integrating with Strategy and Performance
Originator: Committee of Sponsoring Organizations of the Treadway Commission
Parent Category: North America
Effective Date: 2017-06-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 228 citations mapped to 0 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-08-24.

Percent (%) of Citations with multiple mandates: 36.6%

Percent (%) of terms that were non-standard: 4.20% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 1.9% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 31.1% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 66.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.4% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

August 6, 2018 | Weekly Updates

Hong Kong Monetary Authority Supervisory Policy Manual TM-E-1 Risk Management of E-Banking
AD ID: 2822
Status: Released
Availability: Free
Citation Format: § (Legal) and ¶ (for bulleted Paragraphs)
Document Type: Hong Kong Monetary Authority Supervisory Policy Manual TM-E-1 Risk Management of E-Banking
Originator: Hong Kong Monetary Authority
Parent Category: Asia
Effective Date: 2015-02-09
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 265 citations mapped to 167 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-08-02.

Percent (%) of Citations with multiple mandates: 39.4%

Percent (%) of terms that were non-standard: 9.30% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0.4% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 16.6% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 50% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 7.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

June 11, 2018 | Weekly Updates

Principles for Businesses
AD ID: 2940
Status: Released
Availability: Free
Citation Format: § (Legal) and ¶ (Para)
Document Type: Principles for Businesses
Originator: The Financial Conduct Authority
Parent Category: Europe
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 15 citations mapped to 12 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-06-08.

Percent (%) of Citations with multiple mandates: 25%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 33.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 13.3% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

May 21, 2018 | Weekly Updates

ISO 27001:2013, Information Technology - Security Techniques - Information Security Management Systems - Requirements
AD ID: 1367
Status: Released
Availability: For Purchase
Citation Format: § (Legal) and ¶ (Para)
Document Type: ISO 27001:2013, Information Technology - Security Techniques - Information Security Management Systems - Requirements
Originator: International Organization for Standardization
Parent Category: International
Effective Date: 2013-10-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 626 citations mapped to 230 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-05-18.

Percent (%) of Citations with multiple mandates: 13.9%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 15.5% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

May 14, 2018 | Weekly Updates

Payment Card Industry (PCI) Data Security Standard, Requirements and Security Assessment Procedures
AD ID: 2794
Status: Released
Availability: Free
Citation Format: § (Legal) and ¶ (for bulleted Paragraphs)
Document Type: Payment Card Industry (PCI) Data Security Standard, Requirements and Security Assessment Procedures
Originator: PCI Security Standards Council
Parent Category: Payment Card Organizations
Effective Date: 2016-04-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 461 citations mapped to 377 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-05-10.

Percent (%) of Citations with multiple mandates: 33%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 1.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 14.1% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 85.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

April 16, 2018 | Weekly Updates

Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672
AD ID: 2921
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672
Originator: National Association of Insurance Commissioners
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 383 citations mapped to 85 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-04-09.

Percent (%) of Citations with multiple mandates: 17.9%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 12% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 23.8% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

1 new Authority Documents have been added to the UCF

April 9, 2018 | Weekly Updates

Insurance Data Security Model Law, NAIC MDL-668
AD ID: 2920
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Insurance Data Security Model Law, NAIC MDL-668
Originator: National Association of Insurance Commissioners
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 215 citations mapped to 128 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-04-06.

Percent (%) of Citations with multiple mandates: 44%

Percent (%) of terms that were non-standard: 0.00% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 22.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 6.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.