Skip to content
ComplianceGenie SCF Controls Platform

Introduction

Introduction

Section titled “Introduction”

Welcome to the SCF Controls Platform — a comprehensive GRC (Governance, Risk, and Compliance) solution built on the Secure Controls Framework.

What is the SCF Controls Platform?

Section titled “What is the SCF Controls Platform?”

The SCF Controls Platform helps organisations manage their compliance posture across multiple regulatory frameworks. Built on the Secure Controls Framework (SCF), it provides a unified approach to:

  • Framework Management — Map your compliance requirements across standards like ISO 27001, SOC 2, PCI DSS, HIPAA, NIS2, and more
  • Control Tracking — Monitor implementation status and maturity of security controls
  • Evidence Collection — Centralise evidence gathering and link artifacts to specific controls
  • Gap Analysis — Identify compliance gaps and track remediation progress
  • Reporting — Generate dashboards and reports for stakeholders and auditors

The platform uses the SCF Controls Catalog — containing control definitions, evidence requirements, and mappings to 26+ compliance frameworks. See Framework Management for the complete list of supported frameworks.

Who is this documentation for?

Section titled “Who is this documentation for?”

This documentation is designed for two primary audiences:

GRC Analysts

Section titled “GRC Analysts”

Day-to-day users who manage frameworks, track controls, collect evidence, and prepare for audits. Start with the User Guide to learn the platform’s features.

Administrators

Section titled “Administrators”

Users responsible for managing users, configuring the organisation, and overseeing platform usage. See the Admin Guide for administration tasks.

Key Concepts

Section titled “Key Concepts”

Before diving in, familiarise yourself with these core concepts:

ConceptDescription
FrameworkA compliance standard (ISO 27001, SOC 2, etc.) with defined requirements
ControlA specific security measure that satisfies one or more framework requirements
EvidenceDocumentation proving a control is implemented and operating effectively
MappingThe relationship between framework requirements and controls
CoverageThe percentage of framework requirements addressed by controls

Next Steps

Section titled “Next Steps”
  • New to GRC? Continue reading to understand the basics
  • Ready to start? Jump to Dashboard to access the platform
  • Managing users? See User Management