Compliance Frameworks

Axura supports 20+ compliance frameworks out of the box. Understand framework requirements and how Axura automates compliance for each.

5 min read

Updated: January 2026

Frameworks

Compliance

Standards

Regulations

Supported Frameworks

Axura provides out-of-the-box support for the following compliance frameworks:

SOC 2 Type I & II

Trust Services✅ Full

ISO 27001:2022

Information Security✅ Full

HIPAA

Healthcare✅ Full

PCI-DSS v4.0

Payment✅ Full

GDPR

Privacy✅ Full

NIST CSF

Cybersecurity✅ Full

CIS Controls v8

Security✅ Full

CCPA

Privacy✅ Full

FedRAMP

Federal✅ Full

CMMC

Defense✅ Full

SOX

Financial✅ Full

HITRUST

Healthcare IT✅ Full

DORA

EU Finance🆕 New

NIS2

EU Cyber🆕 New

EU AI Act

AI Governance🆕 New

Cross-Framework Efficiency

Many controls overlap between frameworks. Axura automatically maps evidence to multiple frameworks, so preparing for SOC 2 also advances your ISO 27001 readiness.

✅ One Evidence, Many Frameworks

A single piece of evidence (like MFA configuration) can satisfy requirements in SOC 2, ISO 27001, HIPAA, and PCI-DSS simultaneously.

Popular Framework Guides

SOC 2 Guide

Complete guide to SOC 2 Type I & II.

ISO 27001 Guide

Information Security Management.

HIPAA Guide

Healthcare data protection.

PCI-DSS Guide

Payment Card Industry standard.