Supported security standards – IriusRisk Support

The following list groups all security standards supported by IriusRisk:

Standard name	Standard subcategories
CIS Amazon Web Services Foundations Benchmark	-
CIS Amazon Web Services Three-tier Web Architecture Benchmark	-
CIS Google Cloud Platform Foundations Benchmark	-
CIS Microsoft Azure Foundations Benchmark	Level 1 Level 2
CIS Docker	Level 1 Level 2 Linux Host Level 1
CIS Kubernetes	Level 1 Level 2
CSA Best Practices for Implementing a Secure Application Container Architecture	-
EU-GDPR	-
HIPAA	Required Addressable
IoTSF	Class 0 Class 1 Class 2
ISO/IEC 27002:2013	-
NIST 800-53	-
NIST 800-63	-
NIST Security Strategies for Microservices-based Application Systems	-
OWASP Application Security Verification Standard (ASVS) v3	Level 1 Level 2 Level 3
OWASP Application Security Verification Standard (ASVS) v4	Level 1 Level 2 Level 3
OWASP Mobile Application Security Verification Standard (MASVS) v1.2	L1 L2 L1+R L2+R
OWASP Top 10	Top 10 2017 Mobile Top 10 2016 API Security Top 10 Docker Top 10 2018
PCI-DSS v3.2	-
UNECE WP.29 Cybersecurity Regulation (CSMS)	-
FedRAMP (Federal Risk and Authorization Management Program)	High Baseline Moderate Baseline Low Baseline
NIST Cybersecurity Framework	-
CWE Top 25 Most Dangerous Software Weaknesses	-

Related articles