AuditXYZ

Industry-Specific Compliance

Guide to industry-specific compliance frameworks including NERC CIP for energy, FERPA for education, DFARS for defense contractors, and more. Understand sector-specific requirements and implementation.

10 frameworks

CJIS

CJIS Security Policy: Criminal Justice Information Security Guide

$30,000–$250,000

The CJIS Security Policy governs access to FBI criminal justice data. This guide covers authentication, encryption, personnel security, and compliance requirements for agencies and technology vendors.

Learn more

COPPA

COPPA: Children's Online Privacy Protection Guide

$15,000–$100,000

COPPA regulates the online collection of personal information from children under 13. This guide covers consent mechanisms, privacy policies, FTC enforcement, and compliance for apps, games, and websites.

Learn more

DFARS

DFARS: Defense Federal Acquisition Regulation Supplement Guide

$50,000–$500,000

DFARS cybersecurity requirements mandate protection of Controlled Unclassified Information in the defense supply chain. This guide covers NIST 800-171, CMMC 2.0, and compliance for defense contractors.

Learn more

EAR

EAR: Export Administration Regulations Guide

$30,000–$300,000

The EAR control exports of dual-use items, software, and technology from the United States. This guide covers ECCN classification, license requirements, screening obligations, and compliance for technology companies.

Learn more

FERPA

FERPA: Education Data Privacy Compliance Guide

$10,000–$75,000

FERPA protects the privacy of student education records in the United States. This guide covers consent requirements, directory information, vendor obligations, and compliance for educational institutions and EdTech.

Learn more

IEC 62443

IEC 62443: Industrial Automation Cybersecurity Guide

$75,000–$750,000

IEC 62443 is the global standard for industrial automation and control system cybersecurity. This guide covers security levels, zones and conduits, roles, certification, and OT security implementation.

Learn more

ISO 21434

ISO 21434: Automotive Cybersecurity Engineering Guide

$100,000–$1,000,000

ISO 21434 establishes cybersecurity engineering requirements for road vehicles. This guide covers TARA methodology, cybersecurity management systems, UNECE compliance, and implementation for OEMs and suppliers.

Learn more

ISO 27799

ISO 27799: Health Informatics Security Management Guide

$25,000–$150,000

ISO 27799 provides health-sector-specific guidance for implementing ISO 27001. This guide covers health data security, patient privacy controls, clinical system protection, and implementation alongside ISO 27001.

Learn more

ITAR

ITAR: International Traffic in Arms Regulations Guide

$50,000–$500,000

ITAR controls the export of defense articles, services, and technical data. This guide covers USML classification, licensing, technology control plans, and compliance for defense industry companies.

Learn more

NERC CIP

NERC CIP: Critical Infrastructure Protection for Energy

$200,000–$5,000,000

NERC CIP standards protect North America's bulk electric system from cyber threats. This guide covers BES asset categorization, electronic security perimeters, compliance requirements, and enforcement.

Learn more

Not sure which to pick? Get a personalised recommendation.

By submitting, you agree to our privacy policy.