38N Control Handbook - Families

These pages are classified as INTERNAL. All information contained herein is confidential to 38North Security. Do NOT share this information or any subset of it outside of 38North Security without the permission of the 38North Security President and confirmation that a valid NDA is in place.

The pages below are provided as a resource and guidance for security control requirements.

Please review the overview page for information on using this control handbook.

If you would like to submit an update to a security control, please do so via the Update Submission page.

Access Control (AC)

Awareness and Training (AT)

Audit and Accountability (AU)

Security Assessment and Authorization (CA)

Configuration Management (CM)

Contingency Planning (CP)

Identification and Authentication (IA)

Incident Response (IR)

Maintenance (MA)

Media Protection (MP)

Physical and Environmental Protection (PE)

Planning (PL)

Personnel Security (PS)

Risk Assessment (RA)

System and Services Acquisition (SA)

System and Communications Protection (SC)

System and Information Integrity (SI)

Additional Resources

Amazon Web Services (AWS) - AWS provides Operational Best Practices for implementing AWS services to meet control requirements of various standards, including FedRAMP, NIST 800-53, CMMC, and HIPAA.

Page updated

Report abuse