Skip to main content

CybersecurityControls
(CSC)

Track and manage cybersecurity controls across 11 frameworks with automated GAP analysis. ISO/IEC 21827:2008 maturity levels, visual dashboards, and task-linked evidence management — all in one platform.

Book a Demo Start Free
Unicis CSC module logo

What is the CSC Module?

The Cybersecurity Management System (CSC) module provides a comprehensive set of baseline security controls aligned with the industry's most widely adopted frameworks. Instead of maintaining separate spreadsheets for each framework, CSC consolidates everything — giving your CISO, security team, and auditors a single source of truth for your organization's security posture.

11 Compliance Frameworks Supported

From the minimum viable security baseline to enterprise-grade frameworks — coverage for every compliance requirement.

MVSP v1.0 Community GDPR Community ISO/IEC 27001 Premium EU NIS2 Premium CIS CSC v8.1 Premium C5 Premium OWASP ASVS v5 Premium ISO/IEC 42001 Premium NIST CSF 2.0 Ultimate SOC 2 Ultimate PCI DSS v4.0.1 Ultimate
Community (Free) Premium Ultimate

Security Compliance That Grows With You

Start with the free MVSP baseline and scale to full enterprise coverage as your compliance program matures.

11 Compliance Frameworks in One Place

11 Compliance Frameworks in One Place

Stop managing separate spreadsheets for each compliance framework. The Unicis CSC module consolidates MVSP, GDPR, ISO 27001, EU NIS2, CIS, C5, NIST CSF 2.0, SOC 2, OWASP ASVS, PCI DSS, and ISO/IEC 42001 controls into a single, unified dashboard — with cross-mapping support on the Ultimate plan.

  • MVSP v1.0 (Minimum Viable Secure Product) — free, Community plan
  • GDPR cybersecurity requirements — free, Community plan
  • ISO/IEC 27001 — Premium plan
  • EU NIS2 Directive — Premium plan
  • CIS Critical Security Controls v8.1 — Premium plan
  • C5 Cloud Computing Compliance — Premium plan
  • OWASP ASVS v5 — Premium plan
  • ISO/IEC 42001 AI Management System — Premium plan
  • NIST CSF 2.0 — Ultimate plan
  • SOC 2 — Ultimate plan
  • PCI DSS v4.0.1 — Ultimate plan
View Documentation
ISO/IEC 21827:2008 Maturity Levels

ISO/IEC 21827:2008 Maturity Levels

Go beyond simple pass/fail control tracking. The Unicis CSC module uses the ISO/IEC 21827:2008 Systems Security Engineering Capability Maturity Model (SSE-CMM) to measure your security maturity at each control level — giving your CISO a true picture of your security posture.

  • Unknown — not yet assessed
  • Not Performed — no recognizable policy or control
  • Performed Informally — started, but significant work remains
  • Planned — in progress but incomplete
  • Well Defined — mostly complete, lacks active enforcement
  • Quantitatively Controlled — implemented and operating
  • Continuously Improving — fully satisfied, auditor-evidenced
Get Started Free
Visual Security Posture Dashboard

Visual Security Posture Dashboard

Your security posture at a glance. The CSC dashboard combines a pie chart showing control status distribution with a radar chart mapping maturity levels across security domains — giving executives and auditors an immediate visual of your compliance health.

  • Pie chart — distribution of Implemented, In Progress, Not Started controls
  • Radar chart — ISO/IEC 21827:2008 maturity per security domain
  • Charts update automatically when any control status changes
  • Multi-framework tabs for easy navigation between frameworks
  • Ideal for board-level reporting and executive dashboards
Task-Linked Controls & Evidence Management

Task-Linked Controls & Evidence Management

Controls are not just checkboxes — they are backed by evidence. Link each CSC control to one or more Unicis tasks that serve as implementation evidence. One task can support multiple controls, and one control can reference multiple tasks. No artificial limits.

  • Link controls to tasks as auditor evidence
  • No limit on tasks per control or controls per task
  • Control table: Code, Section, Control name, Requirements, Status, Tasks
  • Full audit trail: Created, Updated, Deleted events per control
  • Also available as a native Jira Cloud app
Explore Integrations

Framework Access by Plan

Start free with MVSP and GDPR controls, and unlock more frameworks as your compliance needs grow.

Community

Free — start your compliance journey with MVSP and GDPR controls.

MVSP v1.0, GDPR
1 framework at a time
Get Started Free

Premium

For teams scaling their compliance across multiple frameworks.

+ ISO 27001, NIS2, CIS v8.1, C5, OWASP ASVS & ISO 42001
Up to 3 frameworks simultaneously
View Premium

Ultimate

Full coverage with all frameworks and cross-mapping support.

+ NIST CSF 2.0, SOC 2 & PCI DSS
All frameworks with cross-mapping
View Ultimate

Start your cybersecurity compliance program today

Join organizations using Unicis CSC to track controls, measure maturity, and demonstrate compliance across 11 frameworks — starting for free.

Book a Demo