Unified Compliance Framework Common Controls Hub Integration

Document created by Christopher Dodge Employee on Mar 22, 2013Last modified by Susan Read-Miller on May 24, 2019
Version 36Show Document
  • View in full screen mode

UCF Logo

The Unified Compliance Framework (UCF) is an independent initiative to map IT controls across international regulations, standards, and best practices. The UCF harmonizes terms and controls against the backdrop of a master hierarchical list. This allows your organization to focus on a strategic plan (which resources should be applied, when and where) to comply with multiple regulatory bodies using the same team, tools, and funding.


A fundamental starting point is to identify rules, regulations, and industry best practices, which must be included in an organization's compliance portfolio. Parsing the citations within those authoritative sources that contain control objectives and mapping those objectives to organizational controls are the next steps. With those components in place, an organization has a solid foundation to drive audit, risk assessment, asset prioritization, and a host of other activities to support compliance operations.  


UCF integration with RSA Archer supports the use of licensed UCF content to provide you with a consistent set of controls mapped to several regulatory standards and best practices. 


Integration Features

UCF integration with RSA Archer enables organizations to:

  • Conveniently overlay organizational control structures with most major authority documents.
  • Create composite controls lists by defining simple "acceptance lists" of all relevant controls from selected authorities.
  • Clarify conflicts between overlapping authority documents.


Solution and Platform Information

  • Solution Area:  Regulatory & Corporate Compliance
  • Impacted Use Cases:  RSA Archer Policy Program Management (optional)
  • On-Demand Application Requirements: Five (5) On Demand Applications (ODAs) are required for the UCF integration.
  • Supported Platform Version: This offering has been validated on RSA Archer Platform release 6.5.
  • Licensing:  UCF integration requires the purchase of a valid license from the Unified Compliance Framework. 
  • UCF Patents include:
    • U.S. Patent No. 8,661,059
    • U.S. Patent No. 9,009,197
    • U.S. Patent Application No. 13/952,212
    • U.S. Patent Application No. 62/150,237
    • U.S. Patent Application No. 13/723,018


For More Information

To learn more about the UCF RSA Ready certified integration:


For Additional Support

To learn more about UCF, please contact info@unifiedcompliance.com or +1.510.962.5192. For technical support questions, please contact  info@unifiedcompliance.com at +1.510.962.5192To engage an RSA technical support team member with questions regarding this integration, please open a support case.

8 people found this helpful