Secure Controls Framework
Download The SCF
Start Here
Free Content
GRC Fundamentals
SCF Certified
Marketplace
SCF Marketplace

SCF Authorized Solution Providers (ASPs)

SCF ASPs provide solutions to enable the implementation of SCF controls. ASPs include cloud-based platforms, Cloud Service Providers (CSPs), Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), and other platform- or process-oriented service providers.

Find an ASP on CyberAB Marketplace
Browse The SCF Marketplace
Role Definition

What Is an SCF ASP?

SCF ASPs provide solutions to enable the implementation of SCF controls.

ASPs include, but are not limited to, cloud-based platforms (e.g., antimalware, FIM, etc.), Cloud Service Providers (CSPs), Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), and other platform- or process-oriented service providers. ASPs operate within the defined scope of the SCF framework and provide a structured platform for implementing SCF principles.

SCF Control Activity provided by ASPs are validated by the CyberAB, or its designated assessors.

Cloud Platforms

Cloud-based platforms (e.g., antimalware, FIM) that implement SCF-aligned security controls.

MSPs & MSSPs

Managed Service Providers and Managed Security Service Providers offering SCF-aligned services.

Validated Solutions

All SCF Control Activity by ASPs is validated by the CyberAB or designated assessors.

Validated by the CyberAB

SCF Control Activity provided by Authorized Solution Providers is validated by the CyberAB or its designated assessors, ensuring that ASP solutions genuinely enable SCF control implementation for Organizations Seeking Assessment.

Find an ASP

CyberAB Marketplace

The CyberAB is the official Accreditation Body (AB) for the SCF’s Conformity Assessment Program (SCF CAP). The CyberAB runs the SCF Marketplace where all accredited ASPs and other ecosystem participants are listed.

Organizations looking for validated technology solutions or managed service providers that are accredited as SCF ASPs should visit the CyberAB Marketplace to identify qualified providers. You can learn more about being an ASP and sign up through the CyberAB’s website.

CyberAB SCF Marketplace

The CyberAB is the official Accreditation Body for the SCF CAP. All accredited SCF ASPs are listed in the CyberAB Marketplace. Visit cyberab.org to find an ASP or apply to become one.

View the SCF Marketplace at CyberAB.org
SCF CAP Ecosystem

SCF ASPs in the Broader Ecosystem

SCF ASPs are a key player in the broader SCF Ecosystem. ASPs provide the technology platforms and managed services that Organizations Seeking Assessment (OSAs) use to implement SCF controls and demonstrate conformance.

SCF CAP Ecosystem Participants

SCF CAP Ecosystem Participants: SCF (Framework), CyberAB (Accreditation Body), 3PAO (Assessment Org), RPO (Provider Org), ACI (Control Integrator), ASP (Solution Provider, You Are Here), OSA (Org Seeking Assessment).

SCF CAP Ecosystem Flow diagram
Download SCF CAP Ecosystem Overview (PDF)

Join 25,000+ GRC Professionals

Get the latest SCF updates, cybersecurity insights, and community news delivered to your inbox. You know you want to do it!

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Controls are your security, compliance & resilience program - A control is the power to influence or direct behaviors and the course of events.

DOWNLOAD THE SCF

Start Here

What Is The SCF?How To Implement (SCRMS)Domains & PrinciplesLaws & Frameworks (LRF)Relationship Mapping (STRM)NIST OLIR ParticipationESG Considerations

Free Content

SCF DownloadRisk Management (SCR-RMM)Maturity Model (SCR-CMM)Assessment Standards (CDPAS)Mergers & Acquisitions (MA&D)Privacy Principles (DPMP)Evidence Request List (ERL)Scoping Guide (USG)

Resources

GRC FundamentalsSCF CertifiedMarketplaceFAQAboutBlog

Support

DonateVolunteer

© 2026 Secure Controls Framework Council, LLC. All rights reserved.

Terms & ConditionsPrivacyCookiesSitemap