Ad
related to: nist 800 60 revision 2 security controls
Search results
Results from the WOW.Com Content Network
Allow for an organization-generated control selection approach to complement the traditional baseline control selection approach, supporting the use of the consolidated control catalog in NIST SP 800-53 Revision 5. [2] Revision 2 also introduced a new "Prepare" step (step 0) to enhance the effectiveness, efficiency, and cost-effectiveness of ...
Starting with Revision 3 of 800-53, Program Management controls were identified. These controls are independent of the system controls, but are necessary for an effective security program. Starting with Revision 4 of 800-53, eight families of privacy controls were identified to align the security controls with the privacy expectations of ...
Agencies should develop policy on the system security planning process. [6] NIST SP-800-18 introduces the concept of a System Security Plan. [7] System security plans are living documents that require periodic review, modification, and plans of action and milestones for implementing security controls.
The NIST Cybersecurity Framework organizes its "core" material into five "functions" which are subdivided into a total of 23 "categories". For each category, it defines a number of subcategories of cybersecurity outcomes and security controls, with 108 subcategories in all.
NIST Special Publication 800-53 is an information security standard that provides a catalog of privacy and security controls for information systems.Originally intended for U.S. federal agencies except those related to national security, since the 5th revision it is a standard for general usage.
This security control specifies both the hardware and software requirements for detecting suspicious activities. [18] Similarly, NIST SP 800-53 RA-10 Threat Hunting, added in Revision 5, emphasizes proactive network defense by identifying threats that evade traditional controls.
NIST Special Publication 800-37 Rev. 1 was published in February 2010 under the title "Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach". This version described six steps in the RMF lifecycle. Rev. 1 was withdrawn on December 20, 2019 and superseded by SP 800-37 Rev. 2. [1]
Recognizing the unique challenges posed by Industrial Control Systems (ICS), NIST published SP 800-82, titled "Guide to Industrial Control Systems (ICS) Security." This guideline addresses the security of critical infrastructure systems, including SCADA systems, programmable logic controllers (PLCs), and other operational technology (OT ...
Ad
related to: nist 800 60 revision 2 security controls