Search Controls

The Unified Compliance Framework helps you divide and conquer your compliance challenges by organizing real-world IT processes into 15 “Impact Zones.” Each Impact Zone deals with one area of policies, standards, and procedures: technology acquisition, physical security, continuity, records management, etc. The Common Controls are mapped within these Impact Zones and are maintained in a legal hierarchy within that Impact Zone.


Control Name ID #
  • Leadership and high level objectives
    00597
      Loading...
  • Audits and risk management
    00677
      Loading...
  • Monitoring and measurement
    00636
      Loading...
  • Technical security
    00508
      Loading...
  • Physical and environmental protection
    00709
      Loading...
  • Systems continuity
    00731
      Loading...
  • Human Resources management
    00763
      Loading...
  • Operational management
    00805
      Loading...
  • System hardening through configuration management
    00860
      Loading...
  • Records management
    00902
      Loading...
  • Systems design, build, and implementation
    00989
      Loading...
  • Acquisition or sale of facilities, technology, and services
    01123
      Loading...
  • Privacy protection for information and data
    00008
      Loading...
  • Compliance and Governance Manual of Style
    06095
      Loading...
  • Third Party and supply chain oversight
    08807
      Loading...