Framework program
NIST Cybersecurity Framework evidence template.
This is a reusable framework module. It defines source authority, native identifier patterns, collector fit, expected evidence, manual evidence gates, and deployment posture before any client project is created.
next seedNIST CSF 2.0NIST CSF
Template status
planned
NIST
Seed rows
5
Source-native requirement rows
Native examples
3
Stored without normalization loss
Collectors
3
document, configuration, api
Deployment fits
3
SaaS, private, appliance, runner
Native source contract
Keep the framework’s identifiers intact
GV.RM-01
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
ID.AM-01
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
PR.AA-01
Evidence maps to this native reference first, then to any shared ControlFrame control spine or cross-framework reuse.
Automated evidence
Collector lanes to build
asset/source inventory
risk register and policy evidence
protect/detect/respond/recover control tests
crosswalks to NIST 800-53 and ISO controls
Manual or human-gated evidence
Do not fabricate these artifacts
risk appetite and governance decisions
target profiles
executive approvals
supply-chain risk decisions