The JupiterOne compliance platform allows users to import a compliance standard/framework or a security questionnaire in either JSON or CSV format.
In the Compliance app:
- click
Add standard or questionnaire - copy/paste the JSON/CSV content into the modal view
See this github repository for example compliance standards in JSON format:
https://github.com/JupiterOne/security-policy-templates/tree/master/templates/standards
Note: You must have obtained the necessary license and permission to use the framework for your organization. Licensing is not provided by JupiterOne, except for CIS Controls and Benchmarks.
JSON Structure
See the schema documented here.
CSV Import
A compliance standard specification can be imported from a CSV, as long as the CSV header contains the following as column headers:
IDRequirementorControlSectionorDomain