What Templates Are Available for My KCM GRC Platform?

We offer a wide variety of managed templates for your use in the KCM GRC platform. While our managed templates are updated on an ongoing basis, please take a look at the version information that we've included from the template's publisher. That way, you can confirm that our template is current for your organization's purposes.

Below you will find an inventory of the managed templates that we currently offer. Please contact your KCM Customer Success Manager if you'd like to add one of these templates to your console.

JUMP TO: 

C - F - G - H - I - N - O - P - R - S - U

C

• California Consumer Privacy Act Final Text v3.2021
• California Consumer Privacy Act AB 25 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 713 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1130 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1146 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1355 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1564 v1.0 (Amendment to California Consumer Privacy Act)
• California Consumer Privacy Act AB 1202 v1.0 (Amendment to California Consumer Privacy Act)
• CIS Critical Security Controls Group 1 v8
• CIS Critical Security Controls Group 2 v8
• CIS Critical Security Controls Group 3 v8
• CJIS Security Policy v5.9
• Cloud Security Alliance - Cloud Controls Matrix v4.0.1
• Cybersecurity Maturity Model Certification (CMMC) Level 1 v2.0*
• Cybersecurity Maturity Model Certification (CMMC) Level 2 v2.0
• Cybersecurity Maturity Model Certification (CMMC) Level 3 v1.02*
• Cybersecurity Maturity Model Certification (CMMC) Level 4 v1.02*
• Cybersecurity Maturity Model Certification (CMMC) Level 5 v1.02*

Back to Top

F

• FedRAMP High Baseline Controls v6.2020
• FedRAMP LI-SaaS Baseline v6.2020
• FedRAMP Low Baseline Controls v6.2020
• FedRAMP Moderate Baseline Controls v6.2020
• FFIEC Cybersecurity Tool 2015

Back to Top

G

• General Data Protection Regulation (GDPR) v1.0*
• Gramm-Leach-Bliley Act Privacy Rule v12.2021
• Gramm-Leach-Bliley Act Safeguard Rule v12.2021

Back to Top

 H

• HIPAA Privacy and Breach v1.0*
• HIPAA Security Rule v1.0*
• HITECH v2.2009*

Back to Top

I

• International Traffic in Arms Regulations (ITAR) v4.2022
• InTREx-CU v1.2021*
• ISO 27001 2013*
• ISO 27001 2013 Annex
• ISO 27002 2022*

Back to Top

N

• NCUA ACET v1.0
• NERC CIP Cyber Security — BES Cyber System Categorization CIP-002-5.1a *
• NERC CIP Cyber Security — Security Management Controls CIP-003-8 *
• NERC CIP Cyber Security — Personnel & Training CIP-004-6 *
• NERC CIP Cyber Security — Electronic Security Perimeters CIP-005-6 *
• NERC CIP Cyber Security — Physical Security of BES Cyber Systems CIP-006-6 *
• NERC CIP Cyber Security — Systems Security Management CIP-007-6 *
• NERC CIP Cyber Security — Incident Reporting and Response Planning CIP-008-6 *
• NERC CIP Cyber Security — Recovery Plans for BES Cyber Systems CIP-009-6 *
• NERC CIP Cyber Security — Configuration Change Management and Vulnerability Assessments CIP-010-3 *
• NERC CIP Cyber Security — Information Protection CIP-011-2 *
• NERC CIP Cyber Security — Supply Chain Risk Management CIP-013-1 *
• NERC CIP Physical Security CIP-014-2 *
• NIST Cybersecurity Framework v1.1*
• NIST Privacy Framework v1.0
• NIST 800-53 Rev. 5
• NIST 800-53 High Baseline Rev. 5
• NIST 800-53 Moderate Baseline Rev. 5
• NIST 800-53 Low Baseline Rev. 5
• NIST 800-53 Privacy Baseline Rev. 5
• NIST SP 800-171A v6.2018 
• NIST SP 800-171 Rev 2 v1.2021 *
• NIST SP 800-172 v2.2021 *
• NY DFS Cybersecurity Requirements 2021

Back to Top

O

• OWASP Level 1 v4.0.3
• OWASP Level 2 v4.0.3
• OWASP Level 3 v4.0.3

Back to Top

P

• PCI DSS v4.0*
• PCI DSS Self-Assessment Questionnaire A v4.0*
• PCI DSS Self-Assessment Questionnaire A-EP v4.0*
• PCI DSS Self-Assessment Questionnaire B v4.0*
• PCI DSS Self-Assessment Questionnaire B-IP v4.0*
• PCI DSS Self-Assessment Questionnaire C v4.0*
• PCI DSS Self-Assessment Questionnaire C-VT v4.0*
• PCI DSS Self-Assessment Questionnaire D Merchants v4.0*
• PCI DSS Self-Assessment Questionnaire D Service Providers v4.0*
• PCI DSS Self-Assessment Questionnaire P2PPE v4.0*
• PCI DSS Appendix A v4.0*
• Personal Information Protection and Electronic Documents Act (PIPEDA) v. SC 2000, c. 5

Back to Top

S

• Sarbanes Oxley Act v7.2002
• SSAE18 SOC2 TSC v3.2020*
• Standardized Information Gathering (SIG) Lite v2022*
• Standardized Information Gathering (SIG) Core v2022*
• Standardized Information Gathering (SIG) Detail v2022*

Back to Top

U

• UK Anti Bribery Statute Adequate Procedures Checklist v2022
• UK Cyber Security Essentials v2.2
• UK Data Protection Act v2018
• UK Data Security and Data Protection Toolkit v21-22
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 Low Profile
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 Moderate Profile
• UK Defence Cyber Protection Partnership (DCPP) v06.2020 High Profile
• UK IASME Governance Standard - Self Assessment Questionnaire v.5*
• UK Public Sector Network Code of Connection v1.31

Back to Top

If the framework you’re looking for isn’t included in this list, contact your Customer Success Manager. We have additional pre-built templates for frameworks that aren’t listed here, but you may need to update these templates before you can convert them into a scope.