Note: This section may only be included in policy reports that are grouped by hosts.
The Control Glossary section provides information for each control included in the report. Controls are listed in numerical order by the control ID number (CID).
The following information appears for each control in the glossary.
CID. The control ID number assigned to the control.
Statement. The control statement that describes how a technology specific item should be implemented in the environment.
Category. The category that the control is assigned to.
Sub-Category. The sub-category that the control is assigned to.
External Mappings. A list of external frameworks, standards and regulations (such as CobIT, ISO, CIS, SOX, Basel II, etc.) that the control maps to. The list of frameworks displayed may include all available frameworks or a custom list of frameworks. Managers can customize the list of frameworks for the subscription (on the Setup > Frameworks page) and any user can customize the list of frameworks in the policy report template (on the Frameworks tab).
Comments. User-provided comments added to the control details.