Frameworks explained

Kertos multi-framework functionality visualizes the overlap between different regulatory frameworks for you. Central to this approach are Controls since they reflect the actual implementation of a framework (together with their corresponding evidences).

For instance, if you already made a lot of progress on ISO 27001, you might have already implemented some of the controls that are relevant to the EU AI Act framework.

Available Frameworks

Kertos support a variety of different frameworks, including:

• ISO 27001

• NIS 2

• GDPR

• ISO 42001

• SOC2

• TISAX

• ISO 27701

• EU AI Act

• DORA

Filtering controls according to framework

If you want to go into detail on a framework, you can

• Filter controls from the Frameworks page

• Filter controls from the Controls page

Filtering controls from the Framework view

1. In the frameworks overview, click on the little arrow in the top-right corner of the respective framework.

2. This will redirect you to a pre-filtered control overview.

Filtering controls from the Controls page

1. On the controls page, go to the filter menu in the top-left corner.

2. Select the framework that you want to filter for.

3. If applicable, filter the sub-category of the framework.

4. You can switch the order in which controls are displayed using the "Order" selection:

• Recommended: This is the Kertos-recommended control order based on best practices for easy and efficient implementation.

• Default: Display the controls in the order based on their numeration.