Free Education Resources - Cybersecurity & Privacy
At ComplianceForge, we pride ourselves on the level of educational material we provide to clients, so that they have a firm understanding of their requirements. We provide these resources at no-cost, so you are free to download them. If you have any questions, please contact us.
Helpful information pertaining to selecting the appropriate cybersecurity framework for your needs, specifically NIST Cybersecurity Framework, ISO 27002, NIST 800-53 and the Secure Controls Framework (SCF).
Understanding Cybersecurity & Privacy Requirements: Statutory vs Regulatory vs Contractual Obligations
Free guide to understanding the difference between cybersecurity & privacy compliance requirements, specifically statutory, regulatory and contractual obligations.
Free guide to understanding the terminology of cybersecurity and privacy documentation, specifically, policies, standards, controls and procedures.
We put together several videos and a scoping guide to help businesses understand their needs for complying with NIST 800-171. Those free resources can be found here.
The European Union General Data Protection Regulation (EU GDPR) is a hot topic and we worked with the Secure Controls Framework (SCF) to develop the EU GDPR Compliance Criteria (EGCC), which is a free tool for businesses to understand their compliance needs and map those requirements to their existing cybersecurity and privacy principles. You can access the EGCC here.
We wrote a primer on cybersecurity documentation to help explain the components that go into making hierarchical, scalable cybersecurity documentation. That can be found here.
We wrote a compliance guide for merchants to address PCI DSS v3.2 compliance and that can be found here.