The Secure Controls Framework Conformity Assessment Program (SCF CAP) offers a certification path for NIST Cybersecurity Framework version 2 (NIST CSF 2.0). Successfully completing the SCF CAP assessment will award the Organization Seeking Assessment (OSA) with the designation of SCF Certified - NIST CSF 2.0
  |
The SCF CAP Is Your Path To Become NIST CSF 2.0 CertifiedThe SCF CAP is focused on using the SCF as the control set to provide a company-level certification. While the SCF-CAP shares some similarities with other existing, single-focused certifications (e.g., ISO 27001, CMMC, FedRAMP, etc.), the SCF CAP is unique in its metaframework approach to covering cybersecurity and data protection requirements that span multiple laws, regulations and frameworks. SCF Certified - NIST CSF 2.0 - Official Assessment GuideIf you want to get SCF Certified for NIST CSF 2.0, you can download the NIST CSF 2.0 Assessment Guide from the SCF's website at https://securecontrolsframework.com/content/cap/ag-nist-csf-v-1-0.pdf For organizations that have a current Cybersecurity Maturity Model Certification (CMMC) Level 2 certification and want to leverage reciprocity towards NIST CSF 2.0 certification can use a different assessment guide that can be downloaded from: https://securecontrolsframework.com/content/cap/ag-cmmc-l2-nist-csf-v-1-0.pdf (only applicable if the organization holds a current CMMC L2 certification) |
The SCF CAP is designed for cybersecurity & privacy practitioners by cybersecurity & data privacy practitioners. This concept is based on the need within the industry for a tailored conformity assessment solution that is capable of addressing several key considerations:
ComplianceForge has editable policies, standards and procedures for NIST CSF 2.0 to assist your organization earning a NIST CSF 2.0 certification as part of the SCF CAP:
ComplianceForge has several affordable options available for 1-1 mapped policies, standards and procedures to address the NIST CSF 2.0 Set Theory Relationship Mapping (STRM) used by the SCF to identify applicable controls necessary to demonstrate conformity with NIST CSF 2.0 categories and subcategories.
Secure Controls Framework (SCF)
Secure Controls Framework (SCF) "Premium Content" - Editable Policies, Control Objectives, Standards, Guidelines, Controls & Metrics. Product Walkthrough Video When you click the image or the link below, it will direct you to a different page on...
ComplianceForge NIST Cybersecurity Framework Compliance Documentation Templates
Cybersecurity & Data Protection Program (CDPP) Bundle #1A - NIST CSF 2.0 (20% discount) This is a bundle that includes the following two (2) ComplianceForge products that are focused on operationalizing the NIST Cybersecurity...
ComplianceForge NIST Cybersecurity Framework Compliance Documentation Templates
Cybersecurity & Data Protection Program (CDPP) Bundle #2 (30% discount) Is your organization looking for enterprise-class NIST Cybersecurity Framework policy, standard & procedure documentation? This is a bundle that includes the following ten...
ComplianceForge is a Licensed Content Provider (LCP) for the Secure Controls Framework (SCF). With t...
Is A GRC Tool A Security Protection Asset (SPA)? In compliance-related matters there is no room for...
For many cybersecurity practitioners, even those well versed in NIST 800-171 and Cybersecurity Matur...
A common issue facing many front-line IT / cybersecurity practitioners is that they do not know wher...
