Industry 

We are interested in suggestions of additional content for this page. Please share additional suggestions to info@regulatedresearch.org. It will be added if is valuable, accurate and a solid alignment of this project's mission.

Cloud Providers

AWS

• Landing Zone Implementation Guide

• Shared Responsibility Model

Google Cloud 

• FEDRamp Implementation Guide

Microsoft 

• FEDRamp Resources

Compliance Framework

HITRUST

Since it was founded in 2007, HITRUST has championed programs that safeguard sensitive information and manage information risk for global organizations across all industries and throughout the third-party supply chain. In collaboration with privacy, information security, and risk management leaders from the public and private sectors, HITRUST develops, maintains, and provides broad access to its widely adopted common risk and compliance management frameworks as well as related assessments and assurance methodologies.  

• A Framework-based Approach to HIPAA Compliance (Presentation)

• HITRUST and HIPAA (Whitepaper)

Highly Valuable CMMC Presentations

• The Fascinating History of CMMC  as told by Jacob Horne

• Fuzzy Math: The Gap Between SPRS Scores and CMMC Readiness by Jacob Horne

• Dispelling Complications for Marking CUI in Your I.T. Environment by Ferando Machado

• Make NIST SP 800-171 A Framework Again by Jacob Horne 

• The Price of Security: Cost Accounting Considerations for CMMC by Mike Tomaselli