List of tools and services for your NIST CSF

Overview

The list of tools and services for your NIST CSF is curated to showcase the possible purchases required for your NIST CSF preparation. The implementation of some controls requires the purchase and implementation of tools or services. 

Learn more about continuous privacy adherence with privacy essentials in TrustOps!

Critical tools  to purchase

Tools The following listing is “crowdsourced” from our customer base. TrustCloud does not personally recommend any of the tools below, because we haven’t personally used them.
Vulnerability Management tools	Snyk Qualys Rapid7 Zap Tenable Nessus – AWS Inspector
Ticketing System /Support channel	Zendesk HubSpot JIRA Salesforce
Training tool	NINJIO KnowBe4 Eset Curricula
Performance Review tool	SalesForces  Lattice ADP
Background Check tool	Checkr Goodhire Hireright Sanctions
Web Application Firewall	AWS WAF Azure WAF
Antivirus	Microsoft Defender Sophos Webroot
Endpoint Security	Jamf Mosyle Kolide
Intrusion detection	AWS GuardDuty OSSEC (free, open source)
Data Loss Prevention	Alto network Digital Guardian
Source Control	This post does a great job at listing some of the most known version control tools
Automated Deployment	Jenkins AWS CodeDeploy CircleCI BuildKite
Monitoring tool	DataDog SumoLogic AWS GuardDuty

Critical service to purchase

Key services to purchase
Penetration Testing	TrustCloud has a pool of CPA audit firms and partners to help provide a joyfully crafted audit experience. Click here for a list of firms providing pen testing.