NIST Publishes Security and Privacy Controls for Federal Agencies | Practical Law

NIST Publishes Security and Privacy Controls for Federal Agencies | Practical Law

The Information Technology Laboratory (ILT) of the National Institute of Standards and Technology (NIST) has published new guidelines offering a catalog of security and privacy controls for federal information systems and organizations.

NIST Publishes Security and Privacy Controls for Federal Agencies

Practical Law Legal Update 3-527-6105 (Approx. 3 pages)

NIST Publishes Security and Privacy Controls for Federal Agencies

by PLC Intellectual Property & Technology
Published on 03 May 2013USA (National/Federal)
The Information Technology Laboratory (ILT) of the National Institute of Standards and Technology (NIST) has published new guidelines offering a catalog of security and privacy controls for federal information systems and organizations.
On April 30, 2013, Information Technology Laboratory (ITL) of the National Institute of Standards and Technology (NIST) published NIST Special Publication (SP) 800-53, Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations.
The publication was developed as part of an ongoing effort to produce a unified information security framework for the federal government and offers:
  • A catalog of security and privacy controls for federal information systems and organizations.
  • A process for selecting controls to protect organizational operations and assets, individuals, other organizations and the Nation against various threats including:
    • hostile cyber attacks;
    • natural disasters;
    • structural failures; and
    • human errors.
The catalog's controls address a diverse set of security and privacy requirements, which agencies can customize to develop security and privacy frameworks that best fit their specific requirements.