Audit Compliance Frameworks
Benchmark Name | Tags | AWS | Azure | Entra ID |
---|---|---|---|---|
AWS Audit Manager Control Tower Guardrails | Audit Compliance | Cloud Security | Baseline | Yes | No | No |
AWS Foundational Security Best Practices | Yes | No | No | |
CIS AWS Compute Services Benchmark v1.0.0 | Yes | No | No | |
CIS Controls v8 IG1 | Yes | No | No | |
CIS v1.2.0 | Yes | No | No | |
CIS v1.3.0 | Yes | No | No | |
CIS v1.4.0 | Yes | No | No | |
CIS v1.5.0 | Yes | No | No | |
CIS v2.0.0 | Yes | No | No | |
CIS v3.0.0 | Yes | No | No | |
CISA Cyber Essentials | Yes | No | No | |
Federal Financial Institutions Examination Council (FFIEC) | Yes | No | No | |
FedRAMP Low Revision 4 | Yes | No | No | |
FedRAMP Moderate Revision 4 | Yes | No | No | |
General Data Protection Regulation (GDPR) | Yes | No | No | |
GxP 21 CFR Part 11 | Yes | No | No | |
GxP EU Annex 11 | Yes | No | No | |
HIPAA Final Omnibus Security Rule 2013 | Yes | No | No | |
HIPAA Security Rule 2003 | Yes | No | No | |
NIST 800-171 Revision 2 | Yes | No | No | |
NIST 800-172 | Yes | No | No | |
NIST 800-53 Revision 4 | Yes | No | No | |
NIST 800-53 Revision 5 | Yes | No | No | |
NIST Cybersecurity Framework (CSF) v1.1 | Yes | No | No | |
PCI DSS v3.2.1 | Yes | No | No | |
RBI Cyber Security Framework | Yes | No | No | |
Reserve Bank of India - Information Technology Framework for Non-Banking Financial Companies (RBI ITF-NBFC) | Yes | No | No | |
SOC 2 | Yes | No | No | |
CIS v1.3.0 | No | Yes | No | |
CIS v1.4.0 | No | Yes | No | |
CIS v1.5.0 | No | Yes | No | |
CIS v2.0.0 | No | Yes | No | |
CIS v2.1.0 | No | Yes | No | |
FedRAMP High | No | Yes | No | |
HIPAA HITRUST 9.2 | No | Yes | No | |
NIST SP 800-171 Revision 2 | No | Yes | No | |
NIST SP 800-53 Revision 5 | No | Yes | No | |
PCI DSS 3.2.1 | No | Yes | No | |
Reserve Bank of India - IT Framework for NBFC Regulatory Compliance | No | Yes | No | |
Cloud Tagging | Yes | Yes | No | |
Cloud Access | Yes | Yes | Yes |
Last updated