NIST-Guard: Automated Compliance Mapper 🛡️
The Problem In many organizations, GRC is a manual "point-in-time" exercise. Evidence is collected via emails and spreadsheets, leading to audit fatigue and high risk of human error.
The Solution NIST-Guard is a Compliance-as-Code (CaC) utility that demonstrates how to automate the validation of technical controls. By treating security requirements as executable logic, we can achieve Continuous Assurance.
Features
- Automated Mapping: Direct mapping of system configurations to NIST SP 800-53 Rev. 5 controls.
- Data Integrity: Separate layers for Evidence (
/evidence), Frameworks (/frameworks), and Logic (/scripts). - Audit-Ready Reporting: Generates human-readable compliance summaries in the terminal.
Mapped Controls
- IA-2: Identification and Authentication (MFA Enforcement)
- SC-28: Protection of Information at Rest (Encryption Validation)
- AC-17: Remote Access (Insecure Port Scanning)
How to Run
- Ensure you have Python 3.x installed.
- Run the audit via Git Bash:
python scripts/nist_audit_engine.py ---
Phase 5: The Final Update To update your GitHub with the new README:
git add README.md
git commit -m "Updated README with GRC strategic context"
git push