ISO/NIST

FIPS 140-2

Ensures cryptographic tools are government-approved.

NIST 800-53

Provides security rules for US federal systems.

ISO 27034-1

Helps organizations track security in software development.

ISO 20000-1

IT service management using ITIL/COBIT.

ISO 27001

A complete security program for organizations.

ISO 27017

Security rules for cloud services.

ISO 27018

Protects personal data in the cloud.

ISO 27050

Finding electronic evidence for court cases.

ISO 27037

How to collect and store digital evidence.

ISO 27041

Guidelines for investigating incidents.

ISO 27042

How to analyze digital evidence.

ISO 27043

General incident investigation rules.

ISO 31000

Global risk management process.

NIST 800-37

US guide to handling security risks.

ENISA

Europe's cybersecurity guidance.

COBIT

IT governance framework.

ISO 31010

Risk management techniques.

ISO 15408 (Common Criteria)

Certifies security products through independent testing.

ISO 28000

Protects supply chain security.

NIS Directive (EU2016/1148)

EU-wide cybersecurity rules.

NIST 800-145

Defines cloud computing.

NIST 800-146

Cloud benefits, risks, and guidelines.

ISO 17788

Cloud computing basics and definitions.

NIST 500-292

Government cloud adoption guide.

NIST 800-92

Log management rules.

NIST 800-40

Patch management planning.