What are NIST 800-53 controls?
NIST 800 53 Control Families
- AC – Access Control.
- AU – Audit and Accountability.
- AT – Awareness and Training.
- CM – Configuration Management.
- CP – Contingency Planning.
- IA – Identification and Authentication.
- IR – Incident Response.
- MA – Maintenance.
What is the current version of NIST 800-53?
Security and Privacy Controls for Information Systems and Organizations: NIST Publishes SP 800-53, Revision 5. September 23, 2020.
What are the 18 control families?
Control Families:
- AC – Access Control.
- AU – Audit and Accountability.
- AT – Awareness and Training.
- CM – Configuration Management.
- CP – Contingency Planning.
- IA – Identification and Authentication.
- IR – Incident Response.
- MA – Maintenance.
How do you become FISMA certified?
To be FISMA compliant you need to information security controls across your organization based on the guidance from NIST. Several publications encompass the FISMA guidelines: a good place to start is NIST 800 – 53. You’ll also want to read up on NIST 800 – 171, FIPS 199, FIPS 200, and the other NIST 800 –xx documents.
Is NIST better than ISO?
NIST 800-53 is more security control driven with a wide variety of groups to facilitate best practices related to federal information systems. ISO 27001, on the other hand, is less technical and more risk focused for organizations of all shapes and sizes.