Quick Start Guide

  • Why Quick Start
    • Is this audit appropriate for your company?
    • Saving manual labor
    • Ensuring completeness and thoroughness
  • What Quick Start does
    • Pre-loaded controls for each framework
    • Tailors controls based on business profile
    • Streamlined mappings
    • Consolidated scopes of competency to aid in delegation
  • How to use Quick Start
  • Quick Start vs Jump Start
    • Quick Start - when you're at the very beginning
    • Jump Start - when you want to take advantage of work already done


Why Quick Start


    When starting with ControlMap, you are asked whether or not you would like to use Quick Start. Of course, this raises the questions: what is Quick Start? Why should I use it?


    What is Quick Start? Simply put, Quick Start use ControlMap's vast cybersecurity compliance knowledge to automate mapping in an efficient, time-and-cost saving manner. Rather than setting up your frameworks with evidence and policies by hand, Quick Start does this for you.


    Why should I use it? In most cases, Quick Start is the best way to begin your compliance journey with ControlMap. Here's why:


  • Decide if the audit is right for you. Let's be frank: sometimes, you just don't need the compliance framework you're starting on. For example, if you're a small business who doesn't store customer data beyond the use of a point-of-sale system, a full SOC2 Type 1 report might be too much for your business.
  • Save manual labor. You may have an industry-leading understanding of compliance frameworks, and a clear view of how to organize your policies and evidence. However, with that level of expertise, your time is likely much better spent elsewhere. Quick Start's automated mappings get reduce setup time. They also make setup easier, by changing the process from map creation to map modification.
  • Ensure completeness and thoroughness. Let's face it - nobody's perfect. Especially when you have 200+ framework points to fulfil. Setting up your controls, policies, and evidence by hand leaves a lot of room for error and gaps. Too much room, in our opinion. That's why we've developed ControlMap in the first place. Quick Start gives you the guiderails you need to make sure that there are no gaps in your audit.


What does Quick Start do?


   Quick Start makes the process of preparing a cybersecurity compliance audit easier. It does this by pre-loading the right kind of controls for each security framework. By asking a few questions about your business at the beginning, these controls are tailored to specific business needs.

   This might be a good place to define "control". We use "control" to mean the same thing as your internal business controls. That is, the way your organization structures itself to stay on top of requirements and keep in order. For us, this means the way your policies and evidence match with the requirements set forth in the compliance framework of your choice.

   When you use Quick Start, these controls are already set up for you. They're also mapped from policies and evidence to the proper requirement within your framework.

   The neat part about how Quick Start organizes the controls is that it does much of the delegation work for you. Policies and evidence tied to each control generally fall within the realm of a single area of competency. For example, employee onboarding controls would go to HR, while identity and access management controls would go to DevOps.

   With all these setup steps done for you, continuing on your journey with ControlMap couldn't be easier.


How to use Quick Start


    1. Navigate to "My Frameworks" on the left panel

    2. Click "New Framework"

    3. Underneath "Quick Start", click the "Quick Start" button for the framework you'd like:




   4. Under "Security Controls", click "Select controls to implement". (NOTE: you will not be able to proceed without selecting)

   5. Select standardized control sets, or the ControlMap recommended set of Baseline Controls

       5a. If you choose the ControlMap Baseline Controls, you will have the option to include ControlMap's evidence                             templates. These are recommended pieces of evidence to tie with policies

   6. Once back in the Quick Start screen, click "Import Content" and get going with ControlMap!




Quick Start vs. Jump Start


   You might see the Jump Start feature when looking at the set of available frameworks. This is a very powerful feature, but with a catch. You see, you need to have another framework complete to use Jump Start. Then, the work you've already done in one framework will be imported into the new one.


   Quick Start, on the other hand, requires no previous work. It just gives you the guiderails to get your current work done quickly.