Welcome to the Official Secure Control Framework (SCF) Marketplace
The Secure Control Framework (SCF) Marketplace is your centralized destination for trusted, comprehensive resources that support the assessment, implementation, and management of cybersecurity and privacy programs. Developed and maintained by the SCF Council, this marketplace offers a curated selection of tools, assessments, and consultation services built to align with the SCF’s comprehensive control sets.
Whether you're an organization seeking to streamline compliance across multiple frameworks or a professional looking to enhance your risk and security operations, the SCF Marketplace connects you with scalable, actionable solutions. Every participant is vetted by The Cyber AB to ensure it upholds the SCF’s core values of security, privacy, and operational efficiency.
Authorized participant organizations of the SCF ecosystem:
Assessment Services, Audit Services, Cybersecurity Consulting, Governance, Risk & Compliance, Security Products, Virtual CISO. Contact support@complianceforge.com.
Assessment Services, Governance, Risk & Compliance, Third-Party Risk Management, Training. Contact info@privatus.online.
Assessment Services, Digital Forensics, Governance, Risk & Compliance, Managed IT Security Services, Penetration Testing & Phishing, Training. Contact will.cairns@strikegraph.com or mike.hayes@strikegraph.com.
Assessment Services, Audit Services, Cybersecurity Monitoring & Surveillance, Digital Forensics, Managed Detection and Response, Security Awareness and Education, Security Products. Contact allers.mark@cimcor.com.
Created for defense contractors needing to protect sensitive technical information, the NeQter Compliance Engine is the ultimate plug-and-play solution for network-wide visibility and control, protecting proprietary information and enhancing your cybersecurity posture. Contact sales@neqterlabs.com
We can offer the following services to customers: Managed Detection and Response, Security Products, Training. Contact: jadorno@zscaler.com.
ComplianceForge products serve as a business accelerator, where we do the heavy lifting, providing the necessary policies, standards, procedures and other documentation they need to address their cybersecurity and data privacy compliance obligations in the most efficient manner possible. Contact support@complianceforge.com
Assessment Services, Cybersecurity Consulting, Governance, Risk & Compliance, Security Program Development, Third-Party Risk Management. Contact robert.hill@cyturus.com.
Our team can help your organization to meet NIST SP 800-171 compliance requirements following a proven methodology to prepare for a CMMC certification assessment. We can help your organization with the following services: Gap Assessment, Remediation Planning and Documentation. Contact fernando.machado@cybersecinvestments.com
We are proud to be a 3PAO authorized to conduct SCF certification assessments. We also provide cybersecurity consulting, governance, compliance and training services. Contact dcirillo@reef-sys.com for additional information.
Vigilant Systems provides an Inside-out Cybersecurity strategy that is the most effective way an enterprise can protect its valuable information. We do the heavy lifting by designing, building, and implementing an effective information governance program with appropriate standards, policies, processes, procedures, and technologies. For additional information contact psternkopf@vigilant.us.