Redoubt Forge ← Back

Compliance Frameworks.

Framework Coverage

20+ compliance frameworks. Each with lifecycle-specific guidance, continuous evidence collection, and cross-framework leverage through the NIST 800-53 derivation chain. One security posture. Every framework computed.

Frameworks

Every framework your organization needs. Assessed from one security posture.

Redoubt Forge supports frameworks across US government, international standards, cyber defense, AI governance, and custom organizational requirements. Work done for one framework compounds across every other through the derivation chain.

18 items

NIST 800-53 rev5 US Government

The root control catalog. 1,189 controls across 20 families. Every derived framework traces back here.
FedRAMP US Government

Cloud authorization for federal agencies. Low, Moderate, High, and LI-SaaS baselines with OSCAL-native packages.
CMMC Level 1/2/3 US Government

Third-party verification for the defense industrial base. 110 practices mapped to NIST 800-171.
NIST 800-171 US Government

CUI protection for defense contractors. 110 security requirements derived from NIST 800-53. DFARS compliance.
RMF US Government

NIST 800-37 authorization lifecycle. Seven steps from Prepare through Monitor for federal systems and DoD.
CNSSI 1253 US Government

Security categorization and control selection for National Security Systems with classification overlays.
StateRAMP/TX-RAMP US Government

State-level cloud authorization aligned to FedRAMP. Continuous monitoring and marketplace listing.
ISO 27001:2022 International

International ISMS standard. 93 Annex A controls across 4 themes. Global certification readiness.
SOC 2 Type I/II International

Trust Service Criteria for security, availability, and confidentiality. Continuous readiness for AICPA assessments.
PCI-DSS v4.0 International

Payment card security across 12 requirement families. Cardholder data environment monitoring and validation.
HIPAA Security Rule International

ePHI protection for healthcare. Technical, administrative, and physical safeguards assessed continuously.
NIST CSF 2.0 Cyber & Zero Trust

Six core functions including Govern. Bridges regulatory frameworks to operational security programs.
CIS Controls v8 Cyber & Zero Trust

18 prioritized safeguards across three Implementation Groups. Focused on real-world attack vectors.
NIST 800-207 Zero Trust Cyber & Zero Trust

Zero Trust Architecture reference model. Never trust, always verify. Federal mandate under EO 14028.
CISA Zero Trust Maturity Model Cyber & Zero Trust

Five-pillar maturity model from Traditional through Optimal. Phased ZTA implementation roadmap.
NIST AI RMF AI Governance

AI risk management across Govern, Map, Measure, Manage. Trustworthy AI lifecycle for any AI system.
NIST IR 8596 AI Governance

AI measurement and evaluation methodology. Quantitative trustworthiness assessment for AI systems.
Custom Frameworks Custom

Organization-defined control structures with AI-suggested NIST 800-53 mappings. Enterprise tier.
No matches. Try a different search or category.

Something is being forged.

The full platform is under active development. Reach out to learn more or get early access.

Request Early Access