Compliance Frameworks

Cloudgeni does not expose one universal framework matrix for every provider. The active framework set is provider-specific in the current codebase, and the docs should reflect that directly.

Active Framework Coverage

Provider	Active framework coverage in current code
AWS	SOC 2, ISO 27001:2022, NIS2
Azure	SOC 2, ISO 27001:2022, NIS2
GCP	SOC 2, ISO 27001:2022, NIS2
OCI	CIS OCI 3.0

Why This Matters

Framework pages in the UI are only as strong as the mapping data behind the scan results. That means you should read framework output as:

A structured mapping of findings to requirements
A prioritization tool for remediation
A way to organize evidence and reporting

You should not read it as a substitute for a full audit process.

A Practical Reading Of The Results

Use framework views to answer questions like:

Which controls are failing most often in this account?
Which findings affect multiple requirements?
Which areas are worth remediating first before the next review cycle?

Use raw monitor findings when you need provider-native detail, and use repository scans when you need file-level code detail.

SOC 2

Operational guidance for reading SOC 2 mappings in Cloudgeni.

ISO 27001

Operational guidance for ISO 27001:2022 mappings.

CIS

Notes on the CIS benchmark coverage that is actively surfaced today.

Cloud Compliance Cloud Monitors

Getting Started

Features

Integrations

CLI

Compliance

Troubleshooting

Support

Compliance Frameworks

Compliance Frameworks

Active Framework Coverage

Why This Matters

A Practical Reading Of The Results

SOC 2

ISO 27001

CIS

Getting Started

Features

Integrations

CLI

Compliance

Troubleshooting

Support

​Compliance Frameworks

​Active Framework Coverage

​Why This Matters

​A Practical Reading Of The Results

​Related Framework Pages

SOC 2

ISO 27001

CIS

Compliance Frameworks

Active Framework Coverage

Why This Matters

A Practical Reading Of The Results

Related Framework Pages