What Templates Are Available for My KCM GRC Platform?

We offer a wide variety of managed templates for your use in the KCM GRC platform. While our managed templates are updated on an ongoing basis, please take a look at the version information that we've included from the template's publisher. That way, you can confirm that our template is current for your organization's purposes.

Below you will find an inventory of the managed templates that we currently offer. Please contact your KCM Customer Success Manager if you'd like to add one of these templates to your console.

JUMP TO: 

C - F - G - H - I - N - O - P - R - S - U

C

• California Consumer Privacy Act Final Text v3.2021
• California Consumer Privacy Act AB 25 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 713 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1130 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1146 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1355 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1564 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1202 v1.0 (Amendment to California Consumer Privacy Act)
• CIS Critical Security Controls Group 1 v8
• CIS Critical Security Controls Group 2 v8
• CIS Critical Security Controls Group 3 v8
• CJIS Security Policy v5.9.1
• Cloud Security Alliance - Cloud Controls Matrix v4.0.1
• Cybersecurity Maturity Model Certification (CMMC) Level 1 v2.0*
• Cybersecurity Maturity Model Certification (CMMC) Level 2 v2.0*
• Cybersecurity Maturity Model Certification (CMMC) Level 3 v1.02*
• Cybersecurity Maturity Model Certification (CMMC) Level 4 v1.02*
• Cybersecurity Maturity Model Certification (CMMC) Level 5 v1.02*

Back to Top

F

• FedRAMP High Baseline Controls v6.2020
• FedRAMP LI-SaaS Baseline v6.2020
• FedRAMP Low Baseline Controls v6.2020
• FedRAMP Moderate Baseline Controls v6.2020
• FFIEC Cybersecurity Tool 2015

Back to Top

G

• General Data Protection Regulation (GDPR) v1.0*
• Gramm-Leach-Bliley Act Privacy Rule v12.2021
• Gramm-Leach-Bliley Act Safeguard Rule v12.2021

Back to Top

 H

• HIPAA Privacy and Breach v1.0*
• HIPAA Security Rule v1.0*
• HITECH v2.2009*

Back to Top

I

• International Traffic in Arms Regulations (ITAR) v4.2022
• InTREx-CU v1.2021*
• ISO 27001 2022
• ISO 27001 2022 Annex
• ISO 27002 2022*

Back to Top

N

• NERC CIP: Cyber Security — BES Cyber System Categorization v002-5.1a*
• NERC CIP: Cyber Security — Security Management Controls v003-8*
• NERC CIP: Cyber Security — Personnel & Training v004-7*
• NERC CIP: Cyber Security — Electronic Security Perimeters v005-7*
• NERC CIP: Cyber Security — Physical Security of BES Cyber Systems v006-6*
• NERC CIP: Cyber Security — Systems Security Management v007-6*
• NERC CIP: Cyber Security — Incident Reporting and Response Planning v008-6*
• NERC CIP: Cyber Security — Recovery Plans for BES Cyber Systems v009-6*
• NERC CIP: Cyber Security — Configuration Change Management and Vulnerability Assessments v010-4*
• NERC CIP: Cyber Security — Information Protection v011-3*
• NERC CIP: Cyber Security — Communications between Control Centers v012-1*
• NERC CIP: Cyber Security — Supply Chain Risk Management v013-2*
• NERC CIP: Physical Security v014-3*
• NIST Cybersecurity Framework v1.1*
• NIST Privacy Framework v1.0
• NIST 800-53 Rev. 5
• NIST 800-53 High Baseline Rev. 5
• NIST 800-53 Moderate Baseline Rev. 5
• NIST 800-53 Low Baseline Rev. 5
• NIST 800-53 Privacy Baseline Rev. 5
• NIST SP 800-171A v6.2018 
• NIST SP 800-171 Rev 2 v1.2021*
• NIST SP 800-172 v2.2021*
• NY DFS Cybersecurity Requirements 2021

Back to Top

O

• OWASP Level 1 v4.0.3
• OWASP Level 2 v4.0.3
• OWASP Level 3 v4.0.3

Back to Top

P

• PCI DSS v4.0*
• PCI DSS Self-Assessment Questionnaire A v4.0*
• PCI DSS Self-Assessment Questionnaire A-EP v4.0*
• PCI DSS Self-Assessment Questionnaire B v4.0*
• PCI DSS Self-Assessment Questionnaire B-IP v4.0*
• PCI DSS Self-Assessment Questionnaire C v4.0*
• PCI DSS Self-Assessment Questionnaire C-VT v4.0*
• PCI DSS Self-Assessment Questionnaire D Merchants v4.0*
• PCI DSS Self-Assessment Questionnaire D Service Providers v4.0*
• PCI DSS Self-Assessment Questionnaire P2PPE v4.0*
• PCI DSS Appendix A v4.0*
• Personal Information Protection and Electronic Documents Act (PIPEDA) SC 2000, c. 5 v12.2018

Back to Top

S

• Sarbanes Oxley Act v7.2002
• SSAE18 SOC2 TSC v3.2020*
• Standardized Information Gathering (SIG) Lite v2023.04*
• Standardized Information Gathering (SIG) Core v2023.04*
• Standardized Information Gathering (SIG) Detail v2023.04*

Back to Top

U

• UK Anti Bribery Statute Adequate Procedures Checklist v2022
• UK Cyber Security Essentials v3.0
• UK Data Protection Act v2018
• UK Data Security and Data Protection Toolkit v22-23*
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 Low Profile
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 Moderate Profile
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 High Profile

Back to Top

If the framework you’re looking for isn’t included in this list, contact your Customer Success Manager. We have additional pre-built templates for frameworks that aren’t listed here, but you may need to update these templates before you can convert them into a scope.