14 frameworks127 controls

CROSSWALKFramework crosswalk

14 compliance frameworks mapped to ATT&CK. Click a cell to see overlapping controls and shared techniques. Authored by Adam Lundqvist.

Cells coloured by Jaccard similarity of technique sets.

01

	DORA	ISO 27001	PCI DSS v4	CIS v8	NIS2	OWASP API Top 10	OWASP LLM Top 10	OWASP Top 10	ISO 27701	EU AI Act	GDPR	NIST CSF	TIBER-EU
DORA		0.40	0.36	0.48	0.54	0.23	0.31	0.33	0.29	0.26	0.45	0.46	0.19
ISO 27001	0.40		0.33	0.53	0.44	0.30	0.29	0.34	0.28	0.25	0.40	0.36	0.14
PCI DSS v4	0.36	0.33		0.41	0.41	0.33	0.35	0.33	0.39	0.40	0.30	0.33	0.29
CIS v8	0.48	0.53	0.41		0.54	0.33	0.33	0.39	0.29	0.30	0.51	0.48	0.19
NIS2	0.54	0.44	0.41	0.54		0.33	0.36	0.32	0.32	0.27	0.45	0.47	0.22
OWASP API Top 10	0.23	0.30	0.33	0.33	0.33		0.36	0.35	0.26	0.20	0.25	0.31	0.11
OWASP LLM Top 10	0.31	0.29	0.35	0.33	0.36	0.36		0.39	0.39	0.31	0.37	0.39	0.21
OWASP Top 10	0.33	0.34	0.33	0.39	0.32	0.35	0.39		0.28	0.27	0.31	0.35	0.17
ISO 27701	0.29	0.28	0.39	0.29	0.32	0.26	0.39	0.28		0.30	0.38	0.26	0.29
EU AI Act	0.26	0.25	0.40	0.30	0.27	0.20	0.31	0.27	0.30		0.40	0.31	0.27
GDPR	0.45	0.40	0.30	0.51	0.45	0.25	0.37	0.31	0.38	0.40		0.44	0.21
NIST CSF	0.46	0.36	0.33	0.48	0.47	0.31	0.39	0.35	0.26	0.31	0.44		0.18
EU CRA
TIBER-EU	0.19	0.14	0.29	0.19	0.22	0.11	0.21	0.17	0.29	0.27	0.21	0.18

ISO 27701 ↔ NIST CSF — 18 shared techniques

Clear ✕

Control A	Control B	Shared	Examples
A.7.5.1 Identify basis for PII transfer between jurisdi…	GOVERN GOVERN (GV) — Establish and monitor the cyberse…	7	T1078, T1003, T1005, T1041
A.7.5.1 Identify basis for PII transfer between jurisdi…	PROTECT PROTECT (PR) — Use safeguards to manage cyberse…	7	T1566, T1003, T1005, T1486
A.7.4.1 Limit collection	PROTECT PROTECT (PR) — Use safeguards to manage cyberse…	6	T1005, T1566, T1190, T1003
A.7.4.1 Limit collection	RESPOND RESPOND (RS) — Take action regarding a detected…	6	T1005, T1041, T1071.001, T1190
A.7.4.1 Limit collection	IDENTIFY IDENTIFY (ID) — Understand organisational cyber…	5	T1005, T1083, T1190, T1003
A.7.4.5 PII de-identification and deletion at the end o…	IDENTIFY IDENTIFY (ID) — Understand organisational cyber…	5	T1083, T1005, T1021, T1018
A.7.4.5 PII de-identification and deletion at the end o…	PROTECT PROTECT (PR) — Use safeguards to manage cyberse…	5	T1005, T1071, T1059, T1021
A.7.4.1 Limit collection	GOVERN GOVERN (GV) — Establish and monitor the cyberse…	4	T1005, T1041, T1003, T1068
A.7.4.5 PII de-identification and deletion at the end o…	GOVERN GOVERN (GV) — Establish and monitor the cyberse…	4	T1005, T1041, T1078, T1003
A.7.5.1 Identify basis for PII transfer between jurisdi…	IDENTIFY IDENTIFY (ID) — Understand organisational cyber…	4	T1003, T1005, T1486, T1053
A.7.5.1 Identify basis for PII transfer between jurisdi…	RESPOND RESPOND (RS) — Take action regarding a detected…	4	T1005, T1041, T1486, T1068
A.7.4.1 Limit collection	RECOVER RECOVER (RC) — Restore assets and operations af…	3	T1005, T1041, T1071.001
A.7.5.1 Identify basis for PII transfer between jurisdi…	RECOVER RECOVER (RC) — Restore assets and operations af…	3	T1005, T1041, T1485
A.7.4.5 PII de-identification and deletion at the end o…	RECOVER RECOVER (RC) — Restore assets and operations af…	2	T1005, T1041
A.7.4.5 PII de-identification and deletion at the end o…	RESPOND RESPOND (RS) — Take action regarding a detected…	2	T1005, T1041
A.7.4.1 Limit collection	DETECT DETECT (DE) — Find and analyse possible cyberse…	1	T1005
A.7.4.5 PII de-identification and deletion at the end o…	DETECT DETECT (DE) — Find and analyse possible cyberse…	1	T1005
A.7.5.1 Identify basis for PII transfer between jurisdi…	DETECT DETECT (DE) — Find and analyse possible cyberse…	1	T1005

Show non-overlap — ISO 27701 techniques NOT covered by NIST CSF (11)

T1025, T1039, T1048, T1082, T1119, T1530, T1552, T1555, T1560, T1567, T1573

Sourced from cs-graph compliance_mappings (127 controls across 14 frameworks). Jaccard computed from the union of applicable_techniques per control. Refreshed hourly via ISR. Curated by Adam Lundqvist, Founder at SQUR.