This matrix shows where frameworks share overlapping requirements. Implementing controls for one framework often covers multiple frameworks simultaneously.
| Security Domain | DPDPA | RBI | SEBI | CERT-In | ISO 27001 | SOC 2 | PCI DSS | HIPAA | NIST CSF | GDPR/NIS2 |
|---|---|---|---|---|---|---|---|---|---|---|
| Access Control | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | |
| Encryption / Cryptography | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ||
| Incident Response | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ |
| Risk Assessment | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ||
| Audit / Monitoring | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | |
| BCP / DR | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | |||
| Third-Party Management | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | |
| Data Classification | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ||
| Training / Awareness | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ |
Maps key compliance requirements across all 10 frameworks to Raksha's domain-specific procurement advisors.
| Requirement Area | EDR | Email Security | NGFW | SIEM | ZT | IAM | DLP | Cloud | DevSec | AI Sec | OT/IoT | Backup | GRC | Net | MDR |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Consent & Privacy Mgmt | ✓ | ✓ | |||||||||||||
| Data Discovery & Classification | ✓ | ✓ | |||||||||||||
| Encryption & Key Mgmt | ✓ | ✓ | ✓ | ✓ | |||||||||||
| Access Control & IAM | ✓ | ✓ | |||||||||||||
| Endpoint Protection | ✓ | ✓ | ✓ | ||||||||||||
| Network Security | ✓ | ✓ | ✓ | ||||||||||||
| SIEM / SOC / Monitoring | ✓ | ✓ | |||||||||||||
| Incident Response | ✓ | ✓ | ✓ | ✓ | |||||||||||
| Vulnerability Mgmt / VAPT | ✓ | ✓ | |||||||||||||
| BCP / DR / Backup | ✓ | ✓ | |||||||||||||
| Secure Development | ✓ | ✓ | |||||||||||||
| GRC / Audit / Policy | ✓ | ||||||||||||||
| Cloud Security | ✓ | ||||||||||||||
| OT / IoT Security | ✓ | ||||||||||||||
| Third-Party Risk Mgmt | ✓ |