Hello, I hope I came to the right place and that I’m not making a fool of myself.
We are having internal discussions on how to compliance mapping of several regulations. I noticed that OpenSCAP has a lot of compliance requirements as references in the SCAP control activities. Is this a manual process; is OpenSCAP maintain this compliance mapping without any tools? Or is it completely automatic, and if so, how? I.e. how does OpenSCAP map certain regulation requirements to certain control activities? If anyone has the answer, I’d be very grateful. Thanks. Mvh/BR, Tobias Svenblad Security Analyst, Crosskey<https://www.crosskey.fi/>
_______________________________________________ Open-scap-list mailing list Open-scap-list@redhat.com https://www.redhat.com/mailman/listinfo/open-scap-list
