NIST 800-53 Security Controls
National Institute of Standards and Technology (NIST) Special Publication 800-53 provides a catalog of security and privacy controls for all U.S. federal information systems (except those related to national security).
Appendix F of the publication lists controls for management, operational, and technical safeguards. These are designed to protect the confidentiality-integrity-availability triad of systems and data.
The goal of NIST 800-53 is to provide best practices for protecting government’s and citizens’ information from cyber-attacks.
Who Does it apply to?
NIST 800-53 compliance is a major component of FISMA compliance.
Federal Information Security Modernization Act (FISMA) must be followed by U.S. federal government agencies and by contractors and service providers for these agencies.
NIST 800-53 recognizes different risk for different organizations and provides tailoring guidance. Implementation of the NIST standards would vary depending on the organization’s risk factors.
How can GoldSky Security support your NIST 800-53 requirements?
GoldSky assesses the unique risk factors, goals, and environment of the organization and tailors the NIST 800-53 controls to fit, in accordance with the provisions of FIPS 199.
GoldSky examines the controls in place and their effectiveness, consults on identified deficiencies and potential improvements (gap analysis).
GoldSky collects the evidence of implemented controls, and delivers formal reports and opinions on the state of controls.
GoldSky Security offices in Orlando, Denver, Tampa, Nashville, Washington D.C, Phoenix and can help support your NIST 800-53 controls.