Assessing Security and Privacy Controls in Federal Information Systems and Organ: NIST SP 800-53A Revision 4 - Building Effective Assessment Plans

by National Institute of Standards and Technology

Date Released by December 2014 Security control assessments and privacy control assessments are not about checklists, simple pass-fail results, or generating paperwork to pass inspections or audits—rather, such assessments are the principal vehicle used to verify that implemented security controls and privacy controls are meeting their stated goals and objectives. Special Publication 800-53A, Assessing Security and Privacy Controls in Federal Information Systems and Organizations, is written to facilitate security control assessments and privacy control assessments conducted within an effective risk management framework. This public domain material was printed by 4th Watch Cyber Books. 4th Watch is not affiliated with the National Institute of Standards. 4th Watch books use high-quality 8 ½ by 11 inch paper, and are tightly bound. Most are printed in full color. The Kindle version is "fixed format" so the pages appear just as they were originally published. For more NIST titles, cybah webplus net Other NIST SP 800-12 Rev 1 An Introduction to Information Security NIST SP 800-18 Developing Security Plans for Federal Information Systems NIST SP 800-30 Guide for Conducting Risk Assessments NIST SP 800-32 Public Key Technology and the Federal PKI Infrastructure NIST SP 800-34 Contingency Planning Guide for Federal Information Systems NIST SP 800-37 Applying Risk Management Framework to Federal Informatiion NIST SP 800-39 Managing Information Security Risk NIST SP 800-53 Rev 4 Security and Privacy Controls for Federal Information Systems and Organizations NIST SP 800-53A R4 Assessing Security and Privacy Controls NIST SP 800-57 Recommendation for Key Management NIST SP 800-61 Computer Security Incident Handling Guide NIST SP 800-82r2 Guide to Industrial Control Systems (ICS) Security NIST SP 800-95 Guide to Secure Web Services NIST SP 800-121 Guide to Bluetooth Security NIST SP 800-137 Information Security Continuous Monitoring (ISCM) NIST SP 800-160 Systems Security Engineering Internet of Things NIST SP 800-171 Protecting Controlled Unclassified Information in Nonfederal Systems NIST SP 800-177 Trustworthy Email NIST SP 800-184 Guide for Cybersecurity Event Recovery NIST SP 800-190 Application Container Security Guide NIST SP 800-193 Platform Firmware Resiliency Guidelines NIST SP 1800-1 Securing Electronic Health Records on Mobile Devices NIST SP 1800-2 Identity and Access Management for Electric Utilities NIST SP 1800-5 IT Asset Financial Services NIST SP 1800-6 Domain Name Systems-Based Electronic Mail Security NIST SP 1800-7 Situational Awareness for Electric Utilities NIST SP 1800-8: Securing Wireless Infusion Pumps NISTIR 8011 Automation Support for Security Control Assessments NISTIR 8170 The Cybersecurity Framework Cybersecurity Framework Manufacturing Profile NIST Framework for Improving Critical Infrastructure Cybersecurity NISTIR 8062 Introduction to Privacy Engineering and Risk Management in Federal Systems FIPS PUBS Federal Information Processing Standards Publications

494 pages, Kindle Edition

Published July 30, 2017