Compliance Mapping
      Back to home
      1. Knowledge Base Home
      2. Compliance
      3. Compliance Mapping

      Authority Mapping with Hailey

      Leverage the 6clicks mapping with Hailey capability for streamlined compliance management across authorities

      Contents:

      Select source authority

      Within the 6clicks Application, Hailey AI, our risk and compliance artificial intelligence engine, can be used to automatically map similar provisions. 

      To use Hailey for Authority mapping, navigate to the Authority or Compliance Module. Select the Source Authority, the Authority document that you will use to map to Target Authorities.

      The Source to Target relationship is one-to-many, meaning you can map one Source Authority to many Target Authorities. 

      Clicking on the Authority will take you to the Provisions page of that Authority. 

      Map provisions for authority mapping with Hailey

      Once you have selected your source authority, click on the Mappings tab. The Mappings tab displays two sub-tabs:

      1. All - shows all Source Provisions and their associated mappings
      2. Matched - shows all Source Provisions that are mapped to Target Provisions

      To run your first mapping, click Map Provisions.

      maphailey_source1

      Select Target Authority

      Once you have selected the source authority, clicked on the mappings tab, and clicked on Map Provisions, the Select Target Authorities modal will appear, from which you can select your Target Authority or Authorities.  Note that there are two Authority mapping choices:

      1. Manual - this contains Authority documents that can be used for manual mapping
      2. Hailey - this contains all Authority documents that can be used for automated Hailey mapping

      Click Hailey, select a Target Authority document (or multiple documents) from the list, and then click Map authorities
      maphailey_target1

      If the authority mapping has been previously completed, then the modal will display how many provision matches between the Source and Target Authorities have been found. If it has not yet been accomplished, you may see a 'Scan in progress' notification.

      Review Authority Mappings

      To view these matches, click View Results if a previous mapping has been accomplished or look for the notification email once the mapping scan is complete. You will also be notified and can click on the notification within the application.

      If you click on the notification, you will be directed to the Mapper with the Scan Completed modal being displayed.

      The Mappings tab will then be updated to display:

      1. Provision Comparison - displays Source and Target Provisions for comparison
      2. 4 sub-tabs:
        1. All - shows all Source Provisions and their associated mappings
        2. Matched - shows all Source Provisions and Target Provisions that are Matched
        3. In Both but Different - shows all Source Provisions that are similar but not Matched
        4. In Source Only - shows all Source Provisions that are unique

      Matched Tab

      When running a Hailey mapping, the Matched tab shows all Source and Target Provisions that Hailey considers to be a Match.

      A Match is defined as 80% similar or over as determined by our Hailey Provision-to-Provision Mapping Algorithm. 

      In this example, where we are mapping ISO/IEC 27001:2022 Annex A (or Source Authority) to NIST Cyber Security Framework (our Target Authority) you can see that 93 Source Provisions are Matched to Target Provisions.

      maphailey_resultLooking at the list of Provisions in the Matched tab, you can explore the mappings by selecting a Source Provision and cycling through the Matched target Provisions.

      Click on the Source Provision you wish to review. You will see that the Matched Target Provisions will appear in children rows below that Source Provision. 

      Attributes to note:

      1. The Provision Comparison section allows you to view the details of the Source and Target Authorities respectively.
      1. The number of Target Provisions matched to a Source Provision is shown in the Target Provisions column
      2. A Matched Target Provision is signified by a single dot
      3. A Similarity % is also provided, a rating applied by Hailey
      4. The unmatch target button is available to remove the Match that Hailey generated
      5. You can search Source Provisions by using the search bar at the top of the Mappings screen. This search bar refines both Source and Target Provisions. 

      All

      The All tab will now be updated to show all the relationships as per all the Hailey mappings that have been run, including Matched, In Both but Different and In Source Only.

      In Both but Different

      Source and Target provisions will be displayed that have a % similar rating between 0.5% and 0.85%.

      Hailey does not consider these as an exact Match. You can view and navigate through all similar Source and Target provisions as per the Matched tab. 

      You'll note that the Source and Target Provisions that are deemed similar but not matched in the In Both but Different tab are identified by having two dots (1). If you want to Match a Source and Target Provision, you can use the Match source and target Provisions button (2). 

      Clicking this button will move the Source and Target Provision relationship from In Both but Different to Matched in the Matched tab.

      maphailey_match You can revert the Match by clicking the Unmatch target Provision from Source Provision buttons.

      In Source Only

      The In Source Only tab shows all the Source Provisions that have no percentage similarity to the Target Provisions greater than 50%.

      You'll note that these Provisions have two circles, one colored and the other greyed out.  hailey_insourceonly

      If you do not wish the mappings to be displayed for a particular authority, while you are in the Match Mappings view, click Mapped Authorities and then toggle the previously matched authority on (as seen below) or off (icon will be greyed out).

      hailedy_matched

      If you choose not to display the mapping, no matches will be visible.  If you choose to review the mappings of that authority at a later date, you can return to the authority, click on Mappings, click on Matched, and then click on Matched authorities to view and select previously matched authorities. As you run more mappings, across different Target Authorities, all Matched relationships will be saved and displayed in the All and Matched tabs, even when not running a mapping.

      Click here to learn about using manual authority mapping.

      To learn about Authority reporting using these mappings, click here.