TinyGRC Compliance
Simplifying Governance, Risk, and Compliance.
TinyGRC is an app for the Atlassian Confluence that helps you track basic compliance and visualize overall performance. Track SOC2, PCI, ISO 27001, NIST CSF, NIST 800-53, and HIPAA compliance efforts among others.
Release 1.1.1
We are releasing version 1.1.1 in Atlassian Cloud. This release updates several standards to the latest versions. Old standards are still available if you have existing Confluence page, it will reference the old page. However, you will not be able to create a new page with an old standard. ISO 27001:2022 Main Controls ISO 27001:2022 Annex A Controls SOC 2 2024 Trust Principle NIST CSF 2025 Updated Risk Assessment Sample Matrix (available in Templates) Head over to the Atlassian Marketplace and upgrade your version. ... Read more
Release 1.1.0
We are releasing version 1.1.0 in Atlassian Cloud. TinyGRC bug that prevented users saving attachments in certain conditions. Head over to the Atlassian Marketplace. Enjoy!
FedRAMP, NIST CSF and 800-53
We are adding new standards to TinyGRC to help you be compliant to more standards. FedRAMP is The Federal Risk and Authorization Management Program. NIST CSF is the Cyber Security Framework that consists of standards, guidelines and best practices to manage cybersecurity risk. NIST 800-54 rev 5 consists of Security and Privacy Controls for Information Systems and Organizations. Enjoy!
ISO 27001
We are releasing a new Cloud and Server versions in Atlassian Cloud. TinyGRC will now help you track ISO 27001 compliance efforts - a mandatory requirement to self-audit for ISO 27001, in addition to some of the bugfixes. ISO 27001 is an international standard for managing information security. Enjoy!