Configuration
Configure your SecureHive workspace to match your organization’s security program structure.
Workspace Settings
After initial setup, fine-tune your workspace through Settings → General:
- Organization profile — Company name, industry, size, and regulatory environment
- Timezone & locale — Controls date formatting and notification scheduling
- Branding — Upload your logo for the Trust Portal and exported reports
Compliance Frameworks
SecureHive ships with built-in support for major compliance frameworks. Frameworks with full control data are seeded automatically — others can be imported or customized for your organization.
Compliance & security frameworks
| Framework | Coverage | Controls |
|---|---|---|
| ISO 27001:2022 | Annex A controls with statement of applicability | Full CSV import with maturity model |
| SOC 2 Type II | Trust service criteria with evidence collection | Sample control groups |
| NIST CSF 2.0 | All functions, categories, and subcategories | Full CSV import with maturity model |
| NIST 800-53 | Full control catalog with baselines | Sample control groups |
| HIPAA | Administrative, physical, and technical safeguards | Sample control groups |
| PCI DSS 4.0 | All requirements with testing procedures | Sample control groups |
| HITRUST CSF v11.2 | Health information security framework | Sample control groups |
| CMMC 2.0 | Level 1–3 practices across all domains | Full CSV import with maturity assessment |
AI governance frameworks
| Framework | Coverage | Controls |
|---|---|---|
| ISO 42001:2023 | AI management system standard | Full CSV import |
| EU AI Act 2024 | European Union AI regulation compliance | Full CSV import |
| AI Security Standard v1.0 | 75 controls across 9 domains covering identity, data handling, vendor management, engineering, and monitoring | Full CSV import |
Maturity models
| Framework | Coverage |
|---|---|
| ISO 27001:2022 Maturity | 5-level maturity scoring across all Annex A domains |
| NIST CSF 2.0 Maturity | Maturity assessment across all CSF functions |
| CIS Controls v8.1 | All 18 control groups with implementation group tiers (IG1–IG3) and maturity scoring |
| CMMC 2.0 Maturity | Level 1–3 maturity assessment with pass/fail scoring |
| AI Governance Maturity | 5-level maturity model across strategy, risk, ethics, data, and operations |
IT General Controls (ITGC)
| Framework | Domains |
|---|---|
| ITGC — 4 domains | Access Controls, Change Management, IT Operations, Backup & Recovery |
| ITGC — 7 domains | Extended with Program Development, Physical Security, and Vendor Management |
Custom ITGC templates can be imported to match your organization’s specific audit scope. SecureHive also supports custom framework imports via CSV — navigate to Settings → Frameworks → Import to upload your own control structures.
Navigate to Settings → Frameworks to enable the frameworks relevant to your organization. SecureHive will automatically create cross-mappings between frameworks so you only need to satisfy each control once.
Integrations
Connect your existing tools to flow data into SecureHive:
- Vulnerability scanners — Qualys, Tenable, Rapid7
- Cloud providers — AWS, Azure, GCP configuration auditing
- Identity providers — Azure AD, Okta, Google Workspace
- Ticketing — Jira, ServiceNow for remediation tracking
See the API Reference for programmatic integration options.