Skip to main content
ResiPlan
Multi-framework compliance

10 frameworks. 6 countries. One assessment.

From ISO 27001 to every country's national framework — assess a control once and ResiPlan reflects your compliance everywhere, with rationale and citation to back it up.

Free trialBook a demo
6 national frameworks4 cross-border standards300+ pre-mapped controls1 assessment

Assess once, comply many

The same control feeds every framework. You stop duplicating audit work.

1.Assess once

Assess each control a single time, with its evidence.

2.ResiPlan cross-maps

The engine links the control to every framework through traced crosswalks (rationale + citation).

3.Prove everywhere

Your posture is automatically reflected across all 10 frameworks.

A national framework for each country

Your clients and subsidiaries answer to different frameworks per country. ResiPlan covers them natively.

CyFun

Belgium · CCB
23 controls
CyberFundamentals from the Centre for Cybersecurity Belgium.

BSI IT-Grundschutz

Germany · BSI
25 controls
Germany's reference standard for information security.

BIO

Netherlands · CIP
24 controls
Baseline Informatiebeveiliging Overheid — the Dutch government baseline.

ANSSI — Hygiene

France · ANSSI
22 controls
The ANSSI computer-hygiene guide.

ENS

Spain · CCN
20 controls
Esquema Nacional de Seguridad — Spain's public-sector scheme.

FNCS

Italy · ACN
18 controls
The Italian national cybersecurity framework.

+ the cross-border standards

ISO/IEC 27001:2022

93
Information security management (international)

NIS2

42
Directive (EU) 2022/2555 — cybersecurity

DORA

EU
Regulation (EU) 2022/2554 — operational resilience

CYRA

42
Cyber resilience assessment (maturity)

One control, many compliances

Implementing multi-factor authentication satisfies six frameworks at once.

Multi-factor authentication on privileged accounts
1 control assessed
NIS2
Art. 21.2.jMulti-factor authentication
ISO 27001
A.5.17Authentication information
DORA
Art. 9.4.fStrong authentication
ANSSI
Rule 12Authenticate access
CyFun
PR.AC-7User & device authentication
ENS
op.acc.5Authentication mechanism
For GRC consultancies

Your entire client base, one console

Run your cross-framework gap analyses across all your clients from a single portfolio.

Book a demo
Assess each client's maturity from a single portfolio dashboard.
Compare a client against several frameworks at once.
Surface gaps per framework and the gaps common across the portfolio.
Recommend the best-fit framework, backed by data.
Reuse one assessment across every framework — no duplicate evidence.

Frequently asked questions

Which frameworks are built in?

ISO/IEC 27001, NIS2 and DORA, the CYRA cyber-resilience assessment, plus six national frameworks: CyFun (Belgium), BSI IT-Grundschutz (Germany), BIO (Netherlands), ANSSI (France), ENS (Spain) and FNCS (Italy) — all pre-mapped onto a common ISO 27001 + NIS2 core.

How does "assess once, comply many" work?

Every assessed control is linked to the equivalent controls in other frameworks through maintained crosswalks (exact, partial or related). ResiPlan materialises those links and propagates your status automatically — each mapping carries a rationale, a citation and a confidence level.

Can I add my own or a proprietary framework?

Yes. Import your controls, create a custom framework and let AI-assisted mapping propose the crosswalks to ISO 27001, NIS2 and the rest; every suggestion stays subject to your team's review and approval.

Does my posture stay in sync when a control changes?

Yes. Update a control once and the compliance score and gap analysis of every linked framework recompute automatically.

Is data hosted in the EU?

Yes. ResiPlan is hosted within the European Union.

Is it suitable for GRC consultancies?

Yes. Multi-client operator mode lets you assess each client's maturity, compare it against multiple frameworks, benchmark clients against each other and recommend the best-fit framework — all from a single portfolio.

Assess once. Prove it to every regulator.

Start your free trial or request a guided demo of the cross-framework mapping engine.

Free trialSee the mapping engine
Compliance frameworks — ISO 27001, NIS2, DORA + national frameworks | ResiPlan