IST SP 800-53r5

Security and Privacy Controls for Information Systems and Organizations

NIST SP 800-53 provides set of security and privacy safeguarding measures for all types of computing platforms, including general purpose computing systems, cyber-physical systems, cloud systems, mobile systems, industrial control systems, and Internet of Things (IoT) devices. The controls are flexible and customizable and implemented as part of an organization-wide process to manage risk. Safeguarding measures include both security and privacy controls to protect the critical and essential operations and assets of organizations and the privacy of individuals. The objective is to make information systems more penetration resistant to attacks, limit the damage from those attacks when they occur, and make the systems resilient, survivable, and protective of individuals’ privacy. The publication controls are organized into 20 families as listed below (alphabetically). Each family contains controls that are related to the specific topic of the family.

Our Related Services

Our team of experienced consultants can assist in the following areas:

  • Establishing a compliance management solution for ongoing monitoring, maintenance, and maturation of your cybersecurity management/governance efforts

  • Performing risk analysis for resources and business processes in your operational environment

  • Performing gaps analysis of your current cybersecurity management practice and security controls against the recommended controls of NIST SP 800-53

  • Cross-mapping multiple in-scope regulatory and industry standards compliance requirements to NIST SP 800-53 to facilitate efficiency in your compliance programs

  • Improving related business processes and developing or enhancing necessary security policies and procedures

Give us a call at 954-362-7113 or schedule an appointment for a free consultaion to get started.

More about other frameworks and standards

NIST Cybersecurity Framework (CSF)

CSA Cloud Controls Matrix (CCM)

ISO/IEC 27001/27002

Payment Cards Industry Data Security Standard (PCI DSS)

Cybersecurity Maturity Model Certification (CMMC) 2.0 Framework

SWIFT Customer Security Controls Framework

General Data Protection Regulation (GDPR)