Map security recommendations to NIST CCE's / NIST 800-53 controls
Map security setting recommendations to standards bodies such as NIST 800-53 controls so this solution can be offered inside Federal Cloud scenarios.
Provide traceability down to the CCE level and an automated way to EASILY import the data into IT-GRC dashboards, or alternatively build an IT-GRC solution and link the data to it.
Nice idea, let’s see how many votes it gets and how it resonates in the community.
Eli Pulsifer commented
This would be an extremely helpful tool to identify compliance requirements that are met and ones that are not. Also detecting when changes occur that affect compliance.
Jonathan Green commented
I agree with the posting and the follow up. This should not be left to vote. Get it done.
somethings shouldn't be left up to a vote!