All controls across frameworks
Filter and review controls mapped to CMMC, ISO 27001, SOC 2, and PCI DSS in one list.
Controls
9 of 9 shown
| ID | Framework | Description | Status | Owner | Due |
|---|---|---|---|---|---|
| AC.1.001 | CMMC | Limit information system access to authorized users. | Implemented | IT | - |
| AC.1.002 | CMMC | Limit system access to the types of transactions and functions that authorized users are permitted to execute. | Partial | IT/HR | 2026-01-10 |
| CM.2.062 | CMMC | Establish and maintain baseline configurations. | Not started | IT | 2026-03-01 |
| A.5.1 | ISO 27001 | Information security policy document and review process. | Partial | Security | 2026-02-15 |
| A.8.1 | ISO 27001 | Inventory of assets maintained and ownership defined. | Implemented | Asset Management | - |
| CC6.1 | SOC 2 | Logical access security software, infrastructure, and architectures are implemented. | Partial | Security | 2026-02-01 |
| CC2.3 | SOC 2 | Management develops and retains competent individuals. | Not started | HR | 2026-04-10 |
| 1.1.1 | PCI DSS | A current network diagram that identifies all connections is maintained. | Partial | Network | 2026-01-30 |
| 3.2.1 | PCI DSS | Do not store sensitive authentication data after authorization. | Not started | Payments | 2026-05-01 |