Framework and Security Control Summaries

Select the reference to summarize and filter. The summary can be searched an tailored to the specific security outcome, control, etc.


Frameworks describe a set of outcomes that are supported by security or privacy programs. The outcomes are high-level goals. The details of how the goals are accomplished is described in controls (or “informative references”).

Control Sets

Controls are technical or administrative (i.e., policy or procedure) countermeasures designed to protect the desired outcomes of a security or privacy program. Controls protect the confidentiality, integrity, and availability of information systems.