Analysis: Secure Control Framework Assessment Objectives
Sources:
- Organization: Secure Controls Framework (SCF)
- Data Source: SCF Download
The bar chart below provides assessment objective counts by control domain. The SCF consists of 4,156 assessment objectives assigned to 33 control domains.
- Cybersecurity & Privacy Governance (GOV) - 90
- Artificial and Autonomous Technologies (AAT) - 127
- Asset Management (AST) - 140 assessment objectives
- Business Continuity & Disaster Recovery (BCD) - 176
- Capacity & Performance Planning (CAP) - 14
- Change Management (CHG) - 89
- Cloud Security (CLD) - 29
- Compliance (CPL) - 69
- Configuration Management (CFG) - 142
- Continuous Monitoring (MON) - 250
- Cryptographic Protections (CRY) - 71
- Data Classification & Handling (DCH) - 341
- Embedded Technology (EMB) - 23
- Endpoint Security (END) - 205
- Human Resources Security (HRS) - 145
- Identification & Authentication (IAC) - 337
- Incident Response (IRO) - 177
- Information Assurance (IAO) - 131
- Maintenance (MNT) - 136
- Mobile Device Management (MDM) - 27
- Network Security (NET) - 301
- Physical & Environmental Security (PES) - 174
- Privacy (PRI) - 279
- Project & Resource Management (PRM) - 79
- Risk Management (RSK) - 98
- Secure Engineering & Architecture (SEA) - 164
- Security Operations (OPS) - 21
- Security Awareness & Training (SAT) - 74
- Technology Development & Acquisition (TDA) - 276
- Third-Party Management (TPM) - 99
- Threat Management (THR) - 48
- Vulnerability & Patch Management (VPM) - 100
- Web Security (WEB) - 15