Compliance

Controls
Sort column by ascending
Sort column by ascending
Sort column by ascending
Sort column by descending
Sort column by descending
DCF-001
Board Meeting Minutes
Ensures that board meeting minutes are properly documented, reviewed, and stored in accordance with corporate governance requirements.
Ready
SJ
MC
SOC 2
ISO 27001
DCF-002
Access Control Management
Data ensures that accounts used by third parties to access, support, or maintain systems are properly managed and monitored.
Not ready
ER
HIPAA
SOC 2
ISO 27001
DCF-003
Data Encryption Standards
Ensures that sensitive data is encrypted both in transit and at rest using industry-standard encryption protocols.
Ready
DK
LW
HIPAA
ISO 27001
PCI DSS
DCF-004
Incident Response Procedures
Establishes formal procedures for identifying, responding to, and documenting security incidents and breaches.
In progress
RT
SOC 2
ISO 27001
DCF-005
Vendor Risk Assessment
Ensures comprehensive risk assessment of third-party vendors and service providers before engagement.
Not ready
JB
AT
SOC 2
ISO 27001
DCF-006
Employee Security Training
Mandates regular security awareness training for all employees and contractors with access to sensitive systems.
Ready
MG
HIPAA
SOC 2
DCF-007
Backup and Recovery Testing
Ensures regular testing of backup systems and disaster recovery procedures to maintain business continuity.
Ready
JW
AL
SOC 2
ISO 27001
DCF-008
Network Security Monitoring
Implements continuous monitoring of network traffic and security events to detect potential threats.
Not ready
KM
SOC 2
ISO 27001
NIST
DCF-009
Physical Security Controls
Establishes physical security measures for data centers, offices, and other facilities housing sensitive systems.
Ready
RD
SOC 2
ISO 27001
DCF-010
Change Management Process
Ensures all system changes are properly documented, tested, and approved before implementation.
In progress
TA
NJ
SOC 2
ISO 27001
Rows per page
1-10 of 10