Control by control

The best way to get started with securing your enterprise is to just get started.  Doing SOMETHING is better than doing nothing.  I am going to give you the simple guidance and resources that you need to 'just get started' going control by control.  I'll be using the National Institute of Standards (NIST) Special Publication 800-53, Security and Privacy Controls for Information Systems and Organizations.  This is a catalog of security controls that you may need to align to your framework [TODO: add Framework mapping page].  

TODO: Allow creation of accounts, to save checkboxes/status of progress  [Warning - do not map to your corporate identity]

We are families!!

AC

AT

AU

CA

CM

CP

IA

IR

MA

MP

PE

PL

PM

PS

PT

RA

SA

SC

SI

SR