This ITL Bulletin summarizes NIST SP 800-53, Recommended Security Controls for Federal Information Systems and discusses the use of SP 800-53 within the context of federal agency information security programs. The bulletin covers SP 800-53 and Federal Information Security Management Act (FISMA) requirements, how to implement an effective information security program, using a risk-based approach to selecting controls, and a catalog of security controls.
This ITL Bulletin summarizes NIST SP 800-53, Recommended Security Controls for Federal Information Systems and discusses the use of SP 800-53 within the context of federal agency information security programs. The bulletin covers SP 800-53 and Federal Information Security Management Act (FISMA)...
See full abstract
This ITL Bulletin summarizes NIST SP 800-53, Recommended Security Controls for Federal Information Systems and discusses the use of SP 800-53 within the context of federal agency information security programs. The bulletin covers SP 800-53 and Federal Information Security Management Act (FISMA) requirements, how to implement an effective information security program, using a risk-based approach to selecting controls, and a catalog of security controls.
Hide full abstract
Keywords
Federal Information Processing Standards; Federal Information Security Management Act; FISMA; information security; information system security; minimum security requirements; NIST Special Publications; risk management; Risk Management Framework; security categorization; security controls;