The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-53B Control Baselines for Information Systems and Organizations.
The Special Publication (SP) 800-53B establishes security and privacy control baselines for federal information systems and organizations and provides tailoring guidance for those baselines.
An abstract from SP 800-53B:
This publication provides security and privacy control baselines for the Federal Government. There are three security control baselines (one for each system impact level—low-impact, moderate-impact, and high-impact), as well as a privacy baseline that is applied to systems irrespective of impact level. In addition to the control baselines, this publication provides tailoring guidance and a set of working assumptions that help guide and inform the control selection process. Finally, this publication provides guidance on the development of overlays to facilitate control baseline customization for specific communities of interest, technologies, and environments of operation.
NIST
Readers can also download the PDF version.
Related Links and Articles
- NIST SP-800-53 Rev. 5: Security and Privacy Controls for Information Systems and Organizations
- Microsoft releases Zero Trust guidance for Azure AD
- Hacker remotely accesses Florida water treatment plant, bumps chemical level to “dangerous levels”
- 6 Important Security Standards And Guidelines Your Business Should Know About
- Guidelines for securing Content Management Systems