Compliance Controls and Mappings Database – Free Download

The Compliance Controls and Mapping Database is here!

After several weeks of hard work, I am please to present a free database of the various major security compliance frameworks. This MS Access database contains the  following:

  • Security controls for NIST 800-53, FISMA, FedRAMP, PCI DSS v2, HIPAA, ISO 27001, ISO 30000, SOC2, and CSA (Cloud Security Alliance),
  • Control descriptions, supporting text, and implementation guidance.
  • Test procedures for PCI and NIST 800-53A
  • Common controls mapping using the CSA Cloud Controls Matrix 

UPDATE: Version 2.0 of the controls database is now available!

A new version of the compliance controls database is available here.


  • Bill Ross

    October 7, 2014 at 9:45 am

    Vinny Thanks a million for doing this as I know how hard it was to do so. The community will greatly appreciate this. May I suggest you post the fact you did so on LinkedIn blogs

  • Ty

    November 17, 2014 at 5:44 pm

    Thanks for putting this tougher, any chance we can get it as a CSV file, or excel sheet(s). There are some of use that are Mac X based and don’t have access.

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.