I have to comply with the Information Security Manual ISM 2018 but am looking at the Secure Controls Framework due to the work they have put into mapping to the major frameworks including the ISM and Australian Privacy Principles.
I know I can link Policies and exceptions etc to controls in a framework but wonder if I were to implement something like the SCF if I could link the other frameworks together so they update our compliance position automagically