cs-graph · compliance

Compliance framework mappings· 0 controls

Each regulatory obligation is mapped to the MITRE ATT&CK techniques that test it, the D3FEND mitigations that defend it, and the CWE weaknesses beneath it. Confidence-scored and continuously reviewed.

DORA

EU 2022/2554

Digital Operational Resilience Act

In force 2025-01-17

NIS2

EU 2022/2555

Network & Information Security Directive 2

In force 2024-10-17

GDPR

EU 2016/679

General Data Protection Regulation

In force 2018-05-25

ISO 27001

ISO/IEC 27001:2022

ISO/IEC 27001:2022

In force 2022-10-25

No mappings loaded. Counts populate from the cs-graph Firestore on the next ISR pass.