Compliance
compliance
The Compliance object contains information about Industry and Regulatory Framework standards, controls and requirements.
Attributes
Caption | Name | Type | Description |
---|---|---|---|
Related Assessments | assessments | Assessment[] | A list of assessments associated with the compliance requirements evaluation |
Compliance Standard References | compliance_references | KB Article[] | A list of reference KB articles that provide information to help organizations understand, interpret, and implement compliance standards. They provide guidance, best practices, and examples. |
Compliance Standards: Details | compliance_standards | KB Article[] | A list of established guidelines or criteria that define specific requirements an organization must follow. |
Security Control | control | String | A Control is prescriptive, prioritized, and simplified set of best practices that one can use to strengthen their cybersecurity posture. e.g. AWS SecurityHub Controls, CIS Controls. |
Control Parameters | control_parameters | Key:Value object[] | The list of control parameters evaluated in a Compliance check. |
Raw Data | raw_data | JSON | Group: |
Record ID | record_id | String | Group: |
Compliance Requirements | requirements | String[] | A list of requirements associated to a specific control in an industry or regulatory framework. e.g. |
Compliance Standards: List | standards | String[] | Compliance standards are a set of criteria organizations can follow to protect sensitive and confidential information. e.g. |
Status | status | String | The resultant status of the compliance check normalized to the caption of the |
Status Code | status_code | String | The resultant status code of the compliance check. |
Status Detail | status_detail | String | The contextual description of the
|
Status Details | status_details | String[] | A list of contextual descriptions of the |
Status ID | status_id | Integer | The normalized status identifier of the compliance check.
|
Unmapped | unmapped | Unmapped[] | Data from the source that was not mapped into the schema. |
Relationships
Inbound Relationships
These objects and events reference Compliance in their attributes:
Outbound Relationships
Compliance references the following objects and events in its attributes:
This page describes ocsf-1.4.0
Updated 6 days ago