It may seem that the game of chess has little to do with cybersecurity governance, risk, compliance, and strategy, but there is an interesting connection. The opening moves in the game of chess can be used to map controls specified in ISACA’s COBIT® framework to the ISO/IEC 27001:2022 standard outcomes.