menu

News

3 new Authority Documents have been added to the UCF

August 5, 2019 | Weekly Updates

Risk Management Framework for Information Systems and Organizations, A System Life Cycle Approach for Security and Privacy, NIST SP 800-37
AD ID: 3013
Status: Released
Availability: Free
Citation Format: ID (Reference ID)
Document Type: Risk Management Framework for Information Systems and Organizations, A System Life Cycle Approach for Security and Privacy, NIST SP 800-37
Originator: US National Institute of Standards and Technology
Parent Category: International
Effective Date: 2018-12-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 93 citations mapped to 14 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-07-29.

Percent (%) of Citations with multiple mandates: 40%

Percent (%) of terms that were non-standard: 5.60% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 120.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 20.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 21.3% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 1.1% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


ISO 27799:2016 Health informatics -- Information security management in health using ISO/IEC 27002
AD ID: 3014
Status: Released
Availability: For Purchase
Citation Format: § (Legal) and ¶ (for bulleted Paragraphs)
Document Type: ISO 27799:2016 Health informatics -- Information security management in health using ISO/IEC 27002
Originator: International Organization for Standardization
Parent Category: International
Effective Date: 2016-07-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 419 citations mapped to 0 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-08-02.

Percent (%) of Citations with multiple mandates: 6.8%

Percent (%) of terms that were non-standard: 16.90% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 3.3% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 3.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 44.4% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.5% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Brazilian Law No. 13709, of August 14, 2018
AD ID: 3015
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Brazilian Law No. 13709, of August 14, 2018
Originator: National Congress of Brazil
Parent Category: South America
Effective Date: 2020-02-15
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 252 citations mapped to 0 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-08-01.

Percent (%) of Citations with multiple mandates: 17.8%

Percent (%) of terms that were non-standard: 5.40% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 25.4% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 1.2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

3 new Authority Documents have been added to the UCF

April 27, 2019 | Weekly Updates

Appendix B of OCC 12 CFR Part 30, Safety and Soundness Standards
AD ID: 15
Status: Released
Availability: Free
Citation Format: § (Legal)
Document Type: Appendix B of OCC 12 CFR Part 30, Safety and Soundness Standards
Originator: US Office of the Comptroller of the Currency (OCC)
Parent Category: North America
Effective Date: 1995-07-10
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 144 citations mapped to 69 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-03-11.

Percent (%) of Citations with multiple mandates: 34.1%

Percent (%) of terms that were non-standard: 4.90% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 32.6% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 4.2% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 18.7% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


12 CFR Part 748, NCUA Guidelines for Safeguarding Member Information
AD ID: 61
Status: Released
Availability: Free
Citation Format: ¶ (Para and Page)
Document Type: 12 CFR Part 748, NCUA Guidelines for Safeguarding Member Information
Originator: US National Credit Union Administration
Parent Category: North America
Effective Date: 2001-07-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 162 citations mapped to 86 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-03-13.

Percent (%) of Citations with multiple mandates: 30%

Percent (%) of terms that were non-standard: 2.80% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 1.9% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 14.2% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 60% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0.6% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


Supplement to Authentication in an Internet Banking Environment
AD ID: 2982
Status: Released
Availability: Free
Citation Format: ¶ (Numbered Paragraphs)
Document Type: Supplement to Authentication in an Internet Banking Environment
Originator: US Federal Financial Institutions Examination Council (FFIEC)
Parent Category: North America
Effective Date: Not Defined
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 61 citations mapped to 23 UCF Common Control IDs. The document as a whole was last reviewed and released on 2019-03-27.

Percent (%) of Citations with multiple mandates: 20%

Percent (%) of terms that were non-standard: 17.90% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 9.8% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 0% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 0% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.


News

2 new Authority Documents have been added to the UCF

July 30, 2018 | Weekly Updates

CobiT
AD ID: 102
Status: Released
Availability: With Membership
Citation Format: ID (Reference ID)
Document Type: CobiT
Originator: ISACA
Parent Category: International
Effective Date: 2007-04-19
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 872 citations mapped to 443 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-07-16.

Percent (%) of Citations with multiple mandates: 59.8%

Percent (%) of terms that were non-standard: 10.10% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 9% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 25.9% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 31.8% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 3.9% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.

 


ISO 31000 Risk management - Guidelines
AD ID: 2936
Status: Released
Availability: For Purchase
Citation Format: § (Legal)
Document Type: ISO 31000 Risk management - Guidelines
Originator: International Organization for Standardization
Parent Category: International
Effective Date: 2018-02-01
Language: eng

Click here to launch this Authority Document in the Common Controls Hub

This Authority Document has 261 citations mapped to 91 UCF Common Control IDs. The document as a whole was last reviewed and released on 2018-07-18.

Percent (%) of Citations with multiple mandates: 32.7%

Percent (%) of terms that were non-standard: 5.70% The number of non-standard terms doesn't affect UCF users as the UCF team have already mapped those terms to standard terms in the Compliance Dictionary.

Percent (%) of terms mapped into the AD's glossary: 0.4% Primary verbs and nouns not mapped into an AD's glossary can point to the AD's authors not paying attention to the definitions of their terms.

Percent (%) of terms where fewer than 5 other ADs referenced the term: 30.3% Any term in this category is not very widely used by the rest of the compliance community and therefore will more than likely need to be further investigated for any implications it might bring.

Percent (%) of mandates where only 1 to 5 other ADs mapped to the Common Control: 100% Mandates that aren't widely called for will take longer to implement than mandates that are more familiar.

Number of mandates where 0 other ADs mapped to the Common Control: 4.2% These mandates are only called for by this AD, making them particularly thorny to implement, as this AD is the "lone wolf" in asking for them to be followed.