What Templates Are Available for My KCM GRC Platform?

We offer a wide variety of managed templates for your use in the KCM GRC platform. Our team ensures that we have the up-to-date versions of the published framework available for your use. Here is an inventory of our active templates. Please contact your KCM Customer Success Manager if you'd like to add one of these templates to your console.

• AB-375 Consumer Privacy Act of California
• ACCSC Self Evaluation 2015
• ASD Information Security Manual v3.2019
• CIS Critical Security Controls Implementation Group 1 7.1
• CIS Critical Security Controls Implementation Group 2 7.1
• CIS Critical Security Controls Implementation Group 3 7.1
• CJIS Security Policy v5.8
• Cloud Security Alliance - CCM v3.0
• Commonwealth of Virginia Hosted Environment Information Security Standard SEC 525 v03.1
• Commonwealth of Virginia ITRM Standard SEC501 v10.1
• DFARS NIST 800-171 SA v11.2017
• FDA 21CFR11 v4.2016
• FedRAMP High Baseline Controls v8.2018
• FedRAMP LI-SaaS Baseline v8.2018
• FedRAMP Low Baseline Controls v8.2018
• FedRAMP Moderate Baseline Controls v8.2018
• FFIEC Cybersecurity Tool 2015
• Financial Conduct Authority Handbook (UK) v4.2019
• Financial Services Sector Coordinating Council (FSSCC) v1.0
• General Data Protection Regulation (GDPR) v1.0
• Gramm-Leach-Bliley Act Privacy Rule v5.2000
• Gramm-Leach-Bliley Act Safeguard Rule v6.2016
• HIPAA Privacy and Breach v1.0
• HIPAA Security Rule v1.0
• HITECH v1.0
• HMG Security Policy v1.0
• Interagency Guidelines - Information Security Standards v8.2013
• IRS Publication 1075 v9.2016
• ISO 27001 2013
• ISO 27001 2013 Annex
• ISO 27002 2013
• ITAR 12.2018
• Massachusetts Data Privacy Regulation
• NAIC MDL - Insurance Data Security Law 4th Quarter 2017
• NCUA ACET v1.0
• NIST Cybersecurity Framework v1.1
• NIST SP 800-171 A
• NIST SP 800-171 Appendix E_v2016
• NIST SP 800-171 Rev 1
• NIST SP 800-53 rev4
• NIST SP 800-53 rev4 High-Impact Baseline rev4
• NIST SP 800-53 rev4 Moderate-Impact Baseline rev4
• NIST SP 800-53 rev4 Low-Impact Baseline rev4
• NIST SP 800-53 Privacy rev4
• NY DFS Cybersecurity Requirements 2017
• OCIE Cybersecurity Initiative 2014
• OWASP Level 1 v4.0
• OWASP Level 2 v4.0
• OWASP Level 3 v4.0
• PCI DSS v3.2.1
• PCI DSS Self Assessment Questionnaire A v3.2.1
• PCI DSS Self Assessment Questionnaire A-EP v3.2.1
• PCI DSS Self Assessment Questionnaire B v3.2.1
• PCI DSS Self Assessment Questionnaire B-IB v3.2.1
• PCI DSS Self Assessment Questionnaire C v3.2.1
• PCI DSS Self Assessment Questionnaire C-VT v3.2.1
• PCI DSS Self Assessment Questionnaire D Merchants v3.2.1
• PCI DSS Self Assessment Questionnaire D Service Providers v3.2.1
• PCI DSS Self Assessment Questionnaire P2PPE v3.2.1
• PCI DSS Appendices v3.2 to Appendix A v3.2.1
• PCI DSS Appendix A v3.2.1
• Personal Information Protection and Electronic Documents Act (PIPEDA) v. SC 2000, c. 5
• SEC OCIE Cybersecurity Examination Initiative 2015
• Secure Controls Framework v2019.1
• SSAE16 SOC2 TSP and Privacy 2017
• SSAE18 SOC2 TSC (AT-C 105/205)
• SWIFT CSP v2019
• SWIFT CSP v03.2017 to v2019
• UK Cyber Security Essentials 2
• UK Ministry of Defence - Defence Standard 05-138 Issue 2 Low Profile
• UK Ministry of Defence - Defence Standard 05-138 Issue 2 Moderate Profile
• UK Ministry of Defence - Defence Standard 05-138 Issue 2 High Profile