DSP Update For SCF 2025.2

ComplianceForge Support
July 10th, 2025 1 minute read

Listen to article

Audio generated by DropInBlog's Blog Voice AI™ may have slight pronunciation nuances. Learn more

ComplianceForge is a Licensed Content Provider (LCP) for the Secure Controls Framework (SCF). With the 2025.2 release of the SCF, ComplianceForge published an update for:

Digital Security Program (DSP) - SCF-based policies and standards template.
Cybersecurity Standardized Operating Procedures (CSOP) - SCF-based procedures template.

ComplianceForge's SCF-based policies, standards and procedures can save an organization a significant amount of money from the labor-related costs to research, write and refine cybersecurity documentation. ComplianceForge's SCF-based documentation can also be obtained the same day you purchase it, so the time savings is immense:

Decreased implementation costs (e.g., having to research and write policies, standards and procedures); and
Increased speed of implementation and adoption, since you have have the documentation the same day you order it.

« Back to Blog

NIST SP 800‑53 R5 Control Families

This release includes a total of 1,189 controls, organized into 20 families:

Access Control
Awareness & Training
Audit & Accountability
Assessment, Authorization & Monitoring
Configuration Management
Contingency Planning
Identification & Authentication
Incident Response
Maintenance
Media Protection
Physical & Environmental Protection
Planning
Program Management
Personnel Security
Personally Identifiable Information (PII) Processing & Transparency
Risk Assessment
System & Services Acquisition
System & Communications Protection
System & Information Integrity
Supply Chain Risk Management

This count includes deprecated controls that have been removed or folded into others. Some controls are not categorized under baselines—low, moderate, high, or privacy—per NIST SP 800‑53B.

ComplianceForge provides full 1:1 mapping of all 20 families and their controls in its CDPP documentation.

Governance Risk & Compliance (GRC) Content

Secure Controls Framework (SCF)

NIST 800-171 & CMMC - Where Do I Start?

Editable Policies & Standards Templates

Editable Procedures Templates

Cybersecurity Supply Chain Risk Management

NIST 800-171 Compliance

Risk Management

Data Protection (Privacy) & Secure Engineering

Vulnerability & Patch Management

Incident Response

PCI DSS Compliance

NIST 800-171 & CMMC Compliance

Premium GRC Content (GRC Importable)

Cybersecurity Policies, Standards & Procedures

Cybersecurity Supply Chain Risk Management

Privacy & Data Protection (GDPR, CCPA & more)

Risk Management Bundles

Subscriptions

Common Compliance Requirements

Alignment With Secure Practices

Free Guides

Cost Savings

US Federal Data Security Laws & Regulations

US State Data Security Laws & Regulations

International Data Security Laws & Regulations

SCF Licensed Content Provider (LCP)

SCF Certifications

Individual Certifications

Why Choose ComplianceForge?

Industries Served & Client References

Multiple Company Discount

Product Comparison: DSP vs CDPP

DSP Update For SCF 2025.2

NIST SP 800‑53 R5 Control Families

Is A GRC Tool A Security Protection Asset (SPA)?

Cybersecurity Materiality & Key Controls

NIST 800-171 R2 to R3 Transition Guide

Apply PPTDF For Cybersecurity Compliance

DSP Update For SCF 2025.2

Related Articles

NIST SP 800‑53 R5 Control Families

Is A GRC Tool A Security Protection Asset (SPA)?

Cybersecurity Materiality & Key Controls

NIST 800-171 R2 to R3 Transition Guide

Apply PPTDF For Cybersecurity Compliance

NIST SP 800‑53 R5 Control Families