SCF National Cyber Parks - Encryption Canyon (CRY)

SCF Council Cybersecurity Training & Awareness | SCF Domain
February 18th, 2026 2 minute read

Listen to article

Audio generated by DropInBlog's Blog Voice AI™ may have slight pronunciation nuances. Learn more

The Secure Controls Framework (SCF) is focused on security, compliance & resilience capabilities.

Security + Compliance + Resilience is a unified objective. With this multi-discipline approach to cybersecurity and data protection, it signals that an organization isn’t just protected, but also meets its compliance requirements and can quickly bounce back from incidents.

The SCF is a framework and technology-agnostic approach to cybersecurity and data protection controls that can be used to identify, implement and manage secure, compliant and resilient capabilities that covers an organization’s People, Processes, Technologies, Data and Facilities (PPTDF).

As part of the SCF's cybersecurity awareness initiative, we created a National Cyber Park for each SCF domain. Of the SCF's thirty-three (33) domains, this article focuses on the Cryptographic Protections (CRY) domain.

Cryptographic Protections (CRY)

CRY Domain Principle

Utilize appropriate cryptographic solutions and industry-recognized key management practices to protect the confidentiality and integrity of sensitive/regulated data both at rest and in transit.

CRY Domain Intent

Organizations ensure the confidentiality and integrity of its data through implementing appropriate cryptographic technologies to protect systems, applications, services and data.