FOUNDED 2025 · INDEPENDENT UK PRACTICE

The UK Security Leader's Multi-Framework Crosswalk

Thirty control domains, seven frameworks, one view.

Thirty control domains mapped across ISO/IEC 27001:2022, NIST CSF 2.0, CIS Controls v8.1, DORA, NIS 2, UK GDPR and the EU AI Act with ISO/IEC 42001:2023. Designed as a one-page wall reference for the CISO who is now reporting against four frameworks at once.

Download the paper · PDF · 4 pp Related service · Cyber GRC & Regulatory Alignment
02Use this paper when

Scenarios where this paper earns its place on the desk.

  1. 01Building a unified control library across multiple frameworks
  2. 02Responding to a SOC 2 / ISO 27001 / DORA customer questionnaire
  3. 03Briefing a board on the overlap between frameworks
  4. 04Preparing for a multi-framework certification cycle
  5. 05Justifying control investment that satisfies more than one regime
03What you'll find inside

Artefacts and templates included with the paper.

  • ARTEFACT
    30-domain crosswalk grid
  • ARTEFACT
    Evidence-grade tagging
  • ARTEFACT
    Framework overlap heatmap
  • ARTEFACT
    Audit-cycle calendar template
04If this is on your desk
RELATED SERVICE

Cyber GRC & Regulatory Alignment

Open service  →
RELATED TOOLKIT

Framework & standards toolkits

Open toolkit  →
RELATED READING

The Multi-Framework Crosswalk dispatch

Open  →
Paul Jolliffe, Founder of InfoSecAI
AUTHOR

Paul Jolliffe

FOUNDER · INFOSECAI · MBA · CISSP · ISO 27001:2022 LA / LI / IA · PRINCE2 Practitioner

Twenty years of senior security leadership across financial services, healthcare, government, telecoms and technology. Independent UK practice founded 2025. Author of the InfoSecAI insights library.

Book a 30-minute working consultation About the practice

Get The Brief: practitioner notes on what is changing.

Weekly. No tracking pixels, no marketing automation. Unsubscribe in one click.