NIST 800-53 Security Controls
National Institute of Standards and Technology (NIST) Special Publication 800-53 provides a catalog of security and privacy controls for all U.S. federal information systems (except those related to national security).
Appendix F of the publication lists controls for management, operational, and technical safeguards. These are designed to protect the confidentiality-integrity-availability triad of systems and data.
The goal of NIST 800-53 is to provide best practices for protecting government’s and citizens’ information from cyber-attacks.
Who Does it apply to?
NIST 800-53 compliance is a major component of FISMA compliance.
Federal Information Security Modernization Act (FISMA) must be followed by U.S. federal government agencies and by contractors and service providers for these agencies.
NIST 800-53 recognizes different risk for different organizations and provides tailoring guidance. Implementation of the NIST standards would vary depending on the organization’s risk factors.
How can GoldSky Security support your NIST 800-53 requirements?
GoldSky assesses the unique risk factors, goals, and environment of the organization and tailors the NIST 800-53 controls to fit, in accordance with the provisions of FIPS 199.
GoldSky examines the controls in place and their effectiveness, consults on identified deficiencies and potential improvements (gap analysis).
GoldSky collects the evidence of implemented controls, and delivers formal reports and opinions on the state of controls.
GoldSky Security offices in Orlando, Denver, Tampa, Nashville, Washington D.C, Phoenix and can help support your NIST 800-53 controls.
“We could not be more pleased with our partnership with GoldSky Security. The experience and professionalism from your team has exceeded our expectations from day one. Your team was on-site within a week of our initial call. We appreciate the responsiveness and expertise you provided in performing our NIST 800-171 Gap Assessment and now CSOaaS program. Having an On-Demand CSO partner to assist us in building a sound cybersecurity program while maintaining NIST 800-171 compliance has proven to be both efficient and cost-effective. Thanks!”