Eleos | Home

Governance (GV)

Cybersecurity Role Coordination and Alignment

Level N/A

Cybersecurity roles and responsibilities are coordinated and aligned with internal roles and external partners

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.GV-2

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

CIS v8.0

Control Number

AIS-01

BCR-01

CEK-02

GRC-06

HRS-09

SEF-03

SEF-08

STA-02

STA-04

HRS-03

TPM-06

17.4

Solutions
Community

Governance (GV)

Management of Legal and Regulatory Cybersecurity Requirements

Level N/A

Legal and regulatory requirements regarding cybersecurity, including privacy and civil liberties obligations, are understood and managed

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.GV-3

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

A&A-01

A&A-04

AIS-01

BCR-01

CEK-12

CEK-13

CEK-14

CEK-15

CEK-16

CEK-17

CEK-18

CEK-19

CEK-20

CEK-21

DSP-01

DSP-16

GRC-07

HRS-13

LOG-01

CPL-01

Solutions
Community

Governance (GV)

Cybersecurity Risk Governance and Management

Level N/A

Governance and risk management processes address cybersecurity risks

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.GV-4

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

A&A-01

A&A-03

GRC-01

GRC-02

GRC-04

IVS-08

UEM-05

RSK-01

Solutions
Community

Risk Assessment (RA)

Documentation of Asset Vulnerabilities

Level N/A

Asset vulnerabilities are identified and documented

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-1

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

GRC-02

IVS-08

TVM-06

TVM-07

VPM-01

Solutions
Community

Risk Assessment (RA)

Acquisition of Cyber Threat Intelligence

Level N/A

Cyber threat intelligence is received from information sharing forums and sources

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-2

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

GRC-02

THR-03

Solutions
Community

Risk Assessment (RA)

Identification and Documentation of Threats

Level N/A

Threats, both internal and external, are identified and documented

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-3

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

GRC-02

TVM-06

RSK-03

THR-01

Solutions
Community

Risk Assessment (RA)

Business Impact and Likelihood Assessment

Level N/A

Potential business impacts and likelihoods are identified

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-4

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

BCR-02

CEK-06

CEK-20

GRC-02

RSK-08

Solutions
Community

Risk Assessment (RA)

Risk Determination from Threats and Vulnerabilities

Level N/A

Threats, vulnerabilities, likelihoods, and impacts are used to determine risk

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-5

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

BCR-02

CEK-20

GRC-02

IVS-08

TVM-08

RSK-04

Solutions
Community

Risk Assessment (RA)

Prioritization of Risk Responses

Level N/A

Risk responses are identified and prioritized

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RA-6

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

A&A-06

CEK-06

GRC-02

TVM-08

RSK-02

RSK-02.1

RSK-06

Solutions
Community

Risk Management Strategy (RM)

Establishment of Risk Management Processes

Level N/A

Risk management processes are established, managed, and agreed to by organizational stakeholders

Parent

Compliance Framework

NIST CSF v1.1

Control Number

ID.RM-1

Related

Compliance Framework

CCM v4.0.10

Secure Controls Framework 2023.4

Control Number

CEK-07

GRC-02

UEM-05

RSK-01

Solutions
Community

Governance (GV)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Governance (GV)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Governance (GV)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Assessment (RA)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Risk Management Strategy (RM)

Create new POAM

Create new Exception

Assign to POAM

Assign to Exception

Organization Passcode

Only share this code with people you trust. Users will become a member of your organization and view your SSP and reports.