Understand and manage framework categories
Framework categories provide the structure that makes frameworks manageable and navigable. Understanding how to set up and use categories effectively is crucial for creating well-structured frameworks that support your compliance objectives.
Categories is distinct groups or classifications used to organise and structure controls within a framework. They help to break the framework down into manageable parts, making it easier to understand, analyze, and work with the information. Think of them as folders or buckets that hold similar items together.
Why categories matter
Every control must be assigned to a category, so it's essential to set up your categories before adding custom controls to your framework. Categories serve several purposes:
- Organisation: Group related controls logically
- Navigation: Make large frameworks more manageable
- Filtering: Enable quick searches within specific areas
- Analysis: Review compliance progress by category
Predefined vs Custom Categories
When using our predefined templates, categories are already established with controls mapped to appropriate sections. For example, ISO 27001 includes numerous controls that are logically divided into categories for easier management.
Creating Your Own Categories
If you're building a custom framework with fewer controls, you might choose to create just one category and assign all controls to it. For larger, more complex frameworks, multiple categories will help maintain clarity and organisation.
The key is to structure categories in a way that makes sense for your organisation and the specific compliance requirements you're managing.