Skip to the main content.
Request a Call
Request a Call

Cybersecurity Playbooks

This library of Cybersecurity Playbooks provides a set of fully loaded and editable templates that represent the core of what is generally required by management (including process owners), boards of directors and their audit committees, as well as internal and external auditors of relevant organizations, to document, assess, test, report and oversee the design and operating effectiveness of the typical key internal controls on which management is reliant to maintain compliance with Cybersecurity regulatory requirements.

They are drawn from a range of authoritative sources including the National Institute of Standards and Technology (NIST), the Federal Financial Institutions Examination Council's (FFIEC), the Department of Defense, the SEC's Office of Compliance Inspections and Examinations (OCIE), and the New York Department of Financial Services (NYDFS).

 

What can you expect from our comprehensive Playbooks library?

Out-of-the-Box Functionality

Out-of-the-Box Functionality

Our extensive library of fully loaded, ready to use “smart” Playbooks allows you to get started straight away. No training, no new technology, once you can use excel, you’re ready to use GRC Playbook.

Reporting Clarity

Reporting Clarity

Generate meaningful and actionable Dashboards, Status and Management Reports, and slice and dice your data any way you want through our tight integration with Microsoft Power BI.

Scalable Ease-of-Use

Scalable Ease-of-Use

Our expanding library of Playbooks give you three scalable work modes to suit your and your client’s needs – simple ControlSCAN, more detailed DiagnosticREVIEW, and full RCM Assessment.

 

3 Modes of Use

Playbooks builds on and retain the information entered into each of the three work modes to allow you the flexibility of working interchangeably in whatever mode suits your needs at a particular time.

Control Scans

Gap analyses against authoritative best practices and applicable international frameworks

Designed to provide the user with a rapid assessment of the organization’s control/compliance “gaps” – in advance of a more in-depth assessment

DiagnosticREVIEW

Mid-level analysis. A more-in depth review of your chosen subject area.

RCM Assessment

A full-scale Risk and Control Matrix Assessment that gives you the most comprehensive view of your subject area.

 

Cybersecurity Playbooks

NIST-CSF: Cybersecurity Framework (CSF)

The Cybersecurity Maturity Model (CMMC) Level 1

Cybersecurity Maturity Model (CMMC) Level 3

Cybersecurity Baseline Assessment (FFIEC)

Cybersecurity (NYDFS 23 NYCRR 500)

Based on Authoritative Sources

 

US Securities and Exchange Commission FRC FFIEC European Commission COSO
 

Sign up for our newsletter

and get the best of GRC Playbook straight to your inbox.