Skip to main content

Secure Controls Framework Council Partners with The Cyber AB to Enhance Its SCF Conformity Assessment Program

The Cyber AB to Serve as the Designated Accreditation Body for SCF Third-Party Assessments

SHERIDAN, WY / ACCESSWIRE / December 18, 2024 / The Secure Controls Framework Council, LLC (SCF Council), publisher of a leading cybersecurity metaframework, is pleased to announce the appointment of The Cyber AB as the exclusive Accreditation Body (AB) for the SCF Conformity Assessment Program (SCF CAP). This new partnership marks a significant advancement to the Program and will enhance the global landscape of compliance and certification within the cybersecurity industry.

The SCF CAP is focused on using the Secure Controls Framework (SCF) as the control set to provide a company-level certification. While the SCF CAP shares some similarities with other existing, single-focused certifications (e.g., ISO 27001, FedRAMP, etc.), the SCF CAP is unique in its metaframework approach to addressing cybersecurity and data protection requirements that span multiple laws, regulations, and conformity regimes. The SCF CAP is designed to utilize tailored cybersecurity and data protection controls that specifically address the applicable statutory, regulatory, and contractual obligations with which an organization is required to comply.

The Cyber AB's primary role will be to accredit the SCF Third-Party Assessment Organizations (SCF 3PAOs) and oversee the conflict-of-interest governance throughout the program.

Speaking about the partnership, Tom Cornelius, founder of the SCF Council, said, "The collaboration between the SCF Council and The Cyber AB will change how cybersecurity certification is regarded, with SCF CAP offering a more efficient and tailored solution with the trust and confidence of an accredited third-party assessment. By combining the content, process, and technology of the SCF CAP with the capabilities and global reach of The Cyber AB, this partnership will raise the bar as to how third-party cybersecurity and data protection assessments are performed."

The SCF CAP leverages the principles of the Cybersecurity & Data Protection Assessment Standards (CDPAS) to simplify and standardize third-party assessments. The SCF CAP harnesses efficiencies provided by the CDPAS and minimizes assumptions that exist with other third-party assessments. This results in the SCF CAP providing organizations with a meaningful certification that accurately reflects its security posture, offering a streamlined way to demonstrate compliance to partners, clients and other stakeholders.

"Earning an ‘SCF Certified' credential will represent a significant accomplishment, rather than be viewed as a ‘participation ribbon' that is of little practical value, nor indicative of an organization's true security posture," Cornelius said. "Attaining an SCF certification by an accredited third-party will be a worthwhile endeavor for organizations as it raises the credibility bar of their compliance."

As the sole accreditation body for SCF CAP, The Cyber AB will operate independently, providing oversight of the program's accreditation and assessment processes.

"We are honored to be designated as the accreditor for the SCF CAP" said Matthew Travis, Chief Executive Officer of The Cyber AB. "We believe embracing third-party validation of cybersecurity conformity is how organizations will choose to best manage digital risk for themselves and their business partners, and we are excited for the immense potential of SCF CAP."

The accreditation program for SCF CAP is expected to be rolled out in the first half of 2025.

About the Secure Controls Framework Council LLC (SCF Council)

The SCF Council publishes the Secure Controls Framework (SCF) under a Creative Commons licensing model, which is available to organizations free of charge. The SCF serves as a "framework of frameworks," simplifying and unifying cybersecurity and data protection controls. It provides a scalable method for organizations to address both their compliance obligations and security needs, helping them operationalize cybersecurity, risk management and third-party governance.

The SCF Council is dedicated to simplifying the complex landscape of cybersecurity and data protection controls. The SCF meta-framework integrates multiple standards into a holistic control set, allowing organizations to operationalize cybersecurity and manage risk with a straightforward approach.

About the Cyber AB

Founded in 2020, The Cyber AB is a Maryland-based, independent, nonprofit 501(c)(3) tax-exempt organization that provides accreditation services for cybersecurity conformity regimes. The Cyber AB also serves as the exclusive accreditation body for the U.S. Department of Defense Cybersecurity Maturity Model Certification (CMMC) Program.

For more information about this collaboration and the SCF CAP, please visit https://securecontrolsframework.com/scf-conformity-assessment-program-cap.

Contact Information

SCF Council, LLC
support@securecontrolsframework.com

SOURCE: Secure Controls Framework Council LLC



View the original press release on accesswire.com

Stock Quote API & Stock News API supplied by www.cloudquote.io
Quotes delayed at least 20 minutes.
By accessing this page, you agree to the following
Privacy Policy and Terms and Conditions.