[2/27/24, 11:00 AM EST] CSRC has been experiencing technical issues. If you are unable to access a CSRC page or resource, or get a 503 error, please try reloading the page several times--it may help to wait a few minutes before trying again. We apologize for the inconvenience, and hope to have a solution in place next week.
Systems Security Engineering (SSE) Project SSE
Systems security engineering contributes to a broad-based and holistic security perspective and focus within the systems engineering effort. This ensures that stakeholder protection needs and security concerns associated with the system are properly identified and addressed in all systems engineering tasks throughout the system life cycle.
- To provide a basis to formalize a discipline for systems security engineering in terms of its principles, concepts, and activities.
- To foster a common mindset to deliver security for any system, regardless of its scope, size, complexity, or stage of the system life cycle.
- To provide considerations and to demonstrate how systems security engineering principles, concepts, and activities can be effectively applied to systems engineering activities.
- To advance the field of systems security engineering by promulgating it as a discipline that can be applied and studied.
- To serve as a basis for the development of educational and training programs, including the development of individual certifications and other professional assessment criteria.
December 2021: SSE Project Update
NIST announces the release of a major update to Special Publication (SP) 800-160, Volume 2, Revision 1, Developing Cyber-Resilient Systems: A Systems Security Engineering Approach. The guidance helps organizations anticipate, withstand, recover from, and adapt to adverse conditions, stresses, or compromises on systems.
Learn More About the SP 800-160, Volume 2, Revision 1 Update
Created November 21, 2016, Updated September 13, 2023