NIST 800-53 Compliance
What is Nist 800-53?
NIST SP 800-53 stands for the National Institute of Standards and Technology Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organization.
NIST, a non-regulatory agency of the U.S. Commerce Department which encourages and supports innovation and science through the promotion and maintenance of the NIST SP 800-53 industry standards and guidelines. These standards help federal agencies and contractors meet the requirements set by the Federal Information Security Management Act (FISMA).
Maintaining NIST 800-53 Compliance with Global Data Vault
Global Data Vault maintains compliance with NIST 800-53. We retain an independent security consulting firm, US ProTech, to perform routine External Vulnerability Assessments.
NIST Special Publication 800-53 covers the steps in the Risk Management Framework that address security control selection for federal information systems in accordance with the security requirements in Federal Information Processing Standard (FIPS) 200.
This includes selecting an initial set of baseline security controls based on a FIPS 199 worst-case impact analysis, tailoring the baseline security controls, and supplementing the security controls based on an organizational assessment of risk. The security rules cover 17 areas including access control, incident response, business continuity, and disaster recoverability.