NIST SP 800-53 | BAI RMF Resource Center

October 12, 2020

Security Control Spotlight: AC-20 (Use of External Information Systems)

By Ernest Smith, CISSP, PMP Requirement (simplified): Do you have contracts and or service level agreements with the owners of any system outside of your authorization boundary that are processing, storing, and transmitting your information? Breakdown: What is an “external information system”? Employee personally owned devices (I said it!) Systems…

Post Categories: Risk Management Framework Tags: CONTROLS NIST SP 800-53 RMF

September 4, 2017

NIST SP 800-53 Rev 5 – Big Changes Coming?

NIST SP 800-53 Rev 5 – Big Changes Coming? By Lon J. Berman, CISSP As you probably know, the “catalog” of security controls used in RMF is derived from NIST Special Publication (SP) 800-53 Rev 4. What you may not know is that NIST is hard at work on SP…

Post Categories: Uncategorized Tags: NIST SP 800-53 NIST SP 800-53 REV5 RMF

Archives of the Tag NIST SP 800-53

Security Control Spotlight: AC-20 (Use of External Information Systems)

NIST SP 800-53 Rev 5 – Big Changes Coming?

Site Search

Recent Posts