Management System GRC Compliance Tool

Management System And GRC Compliance Tool - Under-Controls.Org

Our Extras

With Extras you get relevant content for the app which is automatically imported.
Extras are extended constantly.

Right now we have the following extras:
ISO 27001 requirement catalogue

With this extra, you easily can import the requirements for your information security management system based on ISO 27001 – based on the widely used standard of ISO 27001:2013.

You get the requirements from this standard based on main requirements including the annex A.

(The requirements do not include the entire content-texts of each control but main parts per capital headlines).

Notice: Update to ISO 27001:2022is available.

SOC 2

With this extra, requirements for your SOC 2 type 1 or type 2 attestation can be imported and used in your control framework.

SOC 2 controls are based on set of controls defined in the Trust Services Criteria (TS).

ISO 9001 requirement catalogue

With this extra, you easily can import ISO 9001 requirements for your quality management system.

You get the requirements from this standard based on main requirements defined in the ISO standard.

(The requirements do not include the content-texts of each control but only the headlines).

ISO 14001 requirement catalogue

With this extra, you easily can import ISO 14001 requirements for your environmental management

system.

You get the requirements from this standard based on main requirements defined in the ISO standard.

(The requirements do not include the content-texts of each control but only the headlines).

GDPR / Data protection / ISO 27701

With this extra, you easily can import requirements concerning dataprotection based on EU GDPR.

Another extra is the ISO 27701 extra which imports the ISO 27701 controls based o the ISO 27701 standard to fulfill or map it to yo existing control standards in regards to data protection.