Navigation

Frameworks


title: Frameworks sidebar_position: 1

Frameworks

The Frameworks page provides a clear overview of the compliance frameworks available in Tidal Control. Here's how to navigate and use it:

Frameworks:

  • Each block represents a compliance framework (e.g., ISO 27001, GDPR, NIST).

  • Details include:

    • A description of the framework for easy identification.

    • Number of requirements in the framework (which we call ‘References’) and number of Controls associated with the framework.

Search and Filter:

  • Use the search bar at the top to quickly find specific frameworks.

  • Filter frameworks to focus on relevant standards or regulations.

Active vs. Inactive Frameworks:

  • Active frameworks appear in full color, while inactive frameworks are greyed out.

  • Click Start on an inactive framework to begin working with it. A framework becomes active when at least 1 Control is linked to a Reference.

Framework Details:

  • Click on any framework card to dive deeper into its requirements (references), linked controls and implementation progress.

The Frameworks page allows you to manage multiple compliance standards efficiently, ensuring all relevant regulations are covered. Tidal is based on the ‘test once, use many’ principle, which means that 1 Control can cover more requirements, even requirements from different frameworks. This makes compliance much more efficient.

Frameworks overview

Progress Tracking of a framework

When you click on one of the frameworks, e.g. ISO 27001, look at the top bars to check your ISO 27001 progress:

  • Assigned: % of controls assigned to team members

  • Implemented: % of controls that have been completed tasks

  • Audited: % of completed assessments

Using the Dashboard

Manage controls by:

  • Click "Link Control" to connect related controls

  • Use "Add Control" to create a new control and link it directly to the requirement

  • Track status with icons underneath the framework controls:

    • 🌍: shows the number of assets assigned to the control

    • 🛡️: Shows the number of risks linked to the control

    • 🛠️: Shows the number of compliance and security gaps in your ISMS related to the selected control (which we call ‘Issues’)

    • 📅: Shows the number of tasks that are due related to the control (e.g. annual check & act phase)

Frameworks ISO page

On the main page when you click on Link Control you can link a control to a reference from this framework

Frameworks link control to reference

When you click on Add Control you can create a custom control yourself, that will be linked to the requirement in framework upon creation.

Frameworks add control

If you hover your mouse over this block with the number of tasks done, you can see what tasks still need to be finished and which assessments are part of it.

Frameworks hovering over tasks

Control Classification

When you click on a control in this ISO 27001 framework, for instance, “Context of the organization defined” the sidebar will appear on the right side which contains more information on the control including these classifications:

  • Category

  • Frequency

  • Nature

  • Process

  • Subprocess

These are attributes you can add to recognize and map controls accurately.

Tasks Section

There are several tasks related to different systems/organizations, for example:

“Determine the scope of the ISMS, due (May 29 2025).”

Tests Section

Shows 3 passed tests, for instance “Determine the scope of the ISMS (ISMS_004)”. The ‘tests’ section is an automatic test we implemented that can give you real-time information to evaluate if the framework is already up to date with compliance metrics.

Issues

Shows there is 0 issues that needs to be solved related to this control.

Settings

Clicking on the settings on the top right leads you to the Control page with the details from the control “Context of the organisation defined (A.01)

Frameworks sidepanel

Details

The first page that opens on the settings is the details page, which shows all the relevant info about the control itself such as:

  • Custom id
  • Validity range
  • Control type
    • Automated control
    • IT-Dependent Manual control
    • Manual Control -Attributes -Description of the control and its requirements

On the right hand side you can see the status of the tasks related to the control. It further displays:

  • Control details
  • Assets linked to the control
  • Plans assigned to the control
  • Owners assigned to the Control
  • Executors assigned to the control
  • Assessors assigned to the control
  • Framework references
  • Dangerzone with archive and delete option.
Frameworks settings details

Assets

On the asset tab you can link asset(s) to the control.

Frameworks settings assets

plans

On the plans tab you can link plans to the control

Frameworks settings plans

Risks

On the risks tab you can link risks to the control

Frameworks settings risks

Tests

On the tests tab you can view the tests that are linked to the control. Go to the Controls overview page and click on the specific control to add a test you want from the sidebar.

Frameworks settings tests

Feed

On the feed tab you can view the activity that happened related to this control

Frameworks settings feed