PILAR aligns the controls in one security profile with controls in another security profile. This functionality is useful, for instance, to estimate ISO 27002:2022 values out of already known ISO 27001:2015 values.

There may be several mappings available in your installation. For instance:

When you clic on one mapping, you have to select one security domain, and one phase for translating values from left evl to right evl

 

 

And then a panel shows up to transfer values:

 

 

Rows presented as black letters on cyan background are valuations of the (old) source evl.

Black on white rows are valuation os the (new) target evl.

Values between parenthesis display the valuation of the associated safeguards.

You may set maturity levels, and comments on the (new) target evl. The propagation of this values to safeguards depends on propagation setting for the corresponding profile.

You may ask PILAR to suggest a value for target taking source into account