CISO Safe

Compliance Resources Library

Access comprehensive cybersecurity compliance documentation, implementation guides, and official resources for US and regional frameworks including SOC 2, ISO 27001, SAMA, NCA, UK GDPR, and more.

US Standards

US cybersecurity and compliance frameworks for American businesses and organizations.

SOC 2 Implementation Guide

AICPA official SOC 2 guidance for service organizations and security controls implementation.

Access Resource

ISO 27001:2022 Standard

International standard for information security management systems (ISMS) requirements.

Access Resource

NIST Cybersecurity Framework 2.0

NIST CSF 2.0 provides guidance for managing and reducing cybersecurity risk across all sectors.

Access Resource

HIPAA Security Rule Guidance

HHS official guidance on HIPAA Security Rule requirements for healthcare organizations.

Access Resource

PCI DSS v4.0 Requirements

Payment Card Industry Data Security Standard requirements and testing procedures.

Access Resource

Saudi Arabia

Cybersecurity frameworks and regulations specific to the Kingdom of Saudi Arabia.

SAMA Cybersecurity Framework

Saudi Arabian Monetary Authority's comprehensive cybersecurity framework for financial institutions.

Access Resource

NCA Essential Cybersecurity Controls (ECC-2:2024)

National Cybersecurity Authority's latest ECC-2:2024 framework with 108 updated controls.

Access Resource

CITC Cloud Computing Regulatory Framework

Communications and Information Technology Commission's cloud computing regulations.

Access Resource

NCA Cybersecurity Regulatory Framework

National Cybersecurity Authority's comprehensive regulatory framework and guidelines.

Access Resource

United Kingdom

UK-specific cybersecurity standards and data protection regulations.

UK GDPR Guidance

Information Commissioner's Office guidance on UK GDPR compliance and data protection.

Access Resource

Cyber Essentials Scheme

UK government-backed scheme helping organizations protect against common cyber attacks.

Access Resource

NCSC 10 Steps to Cyber Security

National Cyber Security Centre's foundational guidance for organizational cyber security.

Access Resource

Cyber Essentials Requirements v3.2

Latest detailed technical requirements for Cyber Essentials certification (v3.2).

Access Resource

United Arab Emirates

UAE cybersecurity standards and regulatory requirements.

UAE Information Assurance Regulation

Official UAE Information Assurance Regulation with 188 security controls managed by TDRA.

Access Resource

UAE Personal Data Protection Law

Federal Decree-Law on Personal Data Protection and privacy requirements in the UAE.

Access Resource

TRA ICT Regulatory Framework

Telecommunications and Digital Government Regulatory Authority's ICT regulations and standards.

Access Resource

UAE National Information Assurance Framework

Comprehensive national framework for information assurance and cybersecurity in the UAE.

Access Resource

European Union

EU-wide cybersecurity directives and data protection regulations.

EU GDPR Official Regulation

Complete text and guidance for the General Data Protection Regulation (GDPR).

Access Resource

ENISA Cybersecurity Publications

European Union Agency for Cybersecurity's guidance documents and best practices.

Access Resource

NIS2 Directive Implementation

Network and Information Security Directive 2.0 implementation guidance and requirements.

Access Resource

EU Cybersecurity Act

European cybersecurity certification framework and ENISA mandate enhancement.

Access Resource

Need Help with Compliance Implementation?

Our experienced CISO consultants can help you navigate these frameworks and develop a comprehensive compliance strategy tailored to your organization's specific needs and regional requirements.

Take Compliance AssessmentSchedule CISO Consultation