NIST 800-53

Compliance

NIST 800-53 Compliance

What is Nist 800-53?

NIST SP 800-53 stands for the National Institute of Standards and Technology Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organization.

NIST, a non-regulatory agency of the U.S. Commerce Department which encourages and supports innovation and science through the promotion and maintenance of the NIST SP 800-53 industry standards and guidelines. These standards help federal agencies and contractors meet the requirements set by the Federal Information Security Management Act (FISMA).

Maintaining NIST 800-53 Compliance with Global Data Vault

Global Data Vault maintains compliance with NIST 800-53. We retain an independent security consulting firm, US ProTech, to perform routine External Vulnerability Assessments.

NIST Special Publication 800-53 covers the steps in the Risk Management Framework that address security control selection for federal information systems in accordance with the security requirements in Federal Information Processing Standard (FIPS) 200.

This includes selecting an initial set of baseline security controls based on a FIPS 199 worst-case impact analysis, tailoring the baseline security controls, and supplementing the security controls based on an organizational assessment of risk. The security rules cover 17 areas including access control, incident response, business continuity, and disaster recoverability.

ProTech Cyber Security

cloud mobility

Cloud Mobility – Buzz Words or Pain Point?

Do an internet search on “cloud mobility,” and you will get a TON of results.  The definition(s) can be confusing, but basically it describes the ability to avoid locking in workloads to a specific cloud vendor.  Diversification of resources between private and public...

The Air Gap Controversy

The Air Gap Controversy In a previous blog post, we talked about the 3-2-1-1 data protection concept as well as “air gaps.” We’ve also discovered that viruses can corrupt files that are written to air-gapped technologies, such as tape, rendering them useless, and the...
gartner magic quadrant

Gartner Magic Quadrant for Data Center Backup and Recovery

Veeam Software is an unusual participant in the Gartner Magic Quadrant given that they entered it in the visionary section, and were the first company to do so with only a virtualization offering.