NIST sp800 53-v4 Topology

Jason Rusch - CISSP CGEIT CISM CISA GNSA
Jason Rusch - CISSP CGEIT CISM CISA GNSAInfosec-rusch
Engineering

NIST sp800 53-v4 Topology

NIST sp800 53-v4 Topology

Jason Rusch - CISSP CGEIT CISM CISA GNSA
Jason Rusch - CISSP CGEIT CISM CISA GNSAInfosec-rusch
Engineering

NIST sp800 53-v4 Topology

NIST sp800 53-v4 Topology

1 of 1
SP 800-53 v4 Recommended Security Controls for Federal Information Systems 3 SECURITY CONTROL CLASSES MANAGEMENT 55 Controls OPERATIONAL 97 Controls TECHNICAL 93 Controls Program Management 16 Risk Assessment 5 Planning 6 Security Assessment Authorization 8 System and Services Acquisition 20 System and Communications Protections 43 Identification and Authentication 11 Configuration Management 11 Awareness and Training 4 Audit and Accountability 16 Contingency Planning 12 Access Controls 23 Authored by; Jason P. Rusch - CISSP, CISM, CISA, CGEIT, GNSA | jason@infosec-rusch.com Incident Response 11 Maintenance 6 Media Protection 8 Physical and Environmental Protection 20 Personnel Security 8 System and Information Integrity 17 18 SECURITY CONTROL GROUPS 3 CONTROL PRIORITIES

Recommended

Information security - 360 Degree Approach by
Information security - 360 Degree ApproachInformation security - 360 Degree Approach
Information security - 360 Degree Approachharsh arora
325 views16 slides
Stop Chasing the Version: Compliance with CIPv5 through CIPv99 by
Stop Chasing the Version: Compliance with CIPv5 through CIPv99 Stop Chasing the Version: Compliance with CIPv5 through CIPv99
Stop Chasing the Version: Compliance with CIPv5 through CIPv99 Tripwire
1.6K views38 slides
aPersona-HIPAA-HITECH-Compliance-v2 by
aPersona-HIPAA-HITECH-Compliance-v2aPersona-HIPAA-HITECH-Compliance-v2
aPersona-HIPAA-HITECH-Compliance-v2Chris Reese
69 views1 slide
SIEM in NIST Cyber Security Framework by
SIEM in NIST Cyber Security FrameworkSIEM in NIST Cyber Security Framework
SIEM in NIST Cyber Security FrameworkBernie Leung, P.E., CISSP
3.6K views16 slides
Top 10 Questions to Ask Your Vulnerability Management Provider by
Top 10 Questions to Ask Your Vulnerability Management ProviderTop 10 Questions to Ask Your Vulnerability Management Provider
Top 10 Questions to Ask Your Vulnerability Management ProviderTawnia Beckwith
466 views4 slides
RISK MANAGEMENT: 4 ESSENTIAL FRAMEWORKS by
RISK MANAGEMENT: 4 ESSENTIAL FRAMEWORKSRISK MANAGEMENT: 4 ESSENTIAL FRAMEWORKS
RISK MANAGEMENT: 4 ESSENTIAL FRAMEWORKSChristina33713
614 views13 slides

More Related Content

What's hot

LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) by
LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)
LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)rver21
76 views8 slides
PCI Breach Scenarios and the Cyber Threat Landscape with Brian Honan by
PCI Breach Scenarios and the Cyber Threat Landscape with Brian HonanPCI Breach Scenarios and the Cyber Threat Landscape with Brian Honan
PCI Breach Scenarios and the Cyber Threat Landscape with Brian HonanTripwire
2K views39 slides
Security Information and Event Management by
Security Information and Event ManagementSecurity Information and Event Management
Security Information and Event ManagementUTD Computer Security Group
352 views23 slides
Nist 800 53 deep dive 20210813 by
Nist 800 53 deep dive 20210813Nist 800 53 deep dive 20210813
Nist 800 53 deep dive 20210813Kinetic Potential
149 views13 slides
The Demystification of successful cybersecurity initiatives. by
The Demystification of successful cybersecurity initiatives.The Demystification of successful cybersecurity initiatives.
The Demystification of successful cybersecurity initiatives.FitCEO, Inc. (FCI)
354 views4 slides
A Pragmatic Approach to SIEM: Buy for Compliance, Use for Security by
A Pragmatic Approach to SIEM: Buy for Compliance, Use for SecurityA Pragmatic Approach to SIEM: Buy for Compliance, Use for Security
A Pragmatic Approach to SIEM: Buy for Compliance, Use for SecurityTripwire
2.2K views9 slides

What's hot(20)

LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) by rver21
LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)
LTS SECURE SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)
rver2176 views
PCI Breach Scenarios and the Cyber Threat Landscape with Brian Honan by Tripwire
PCI Breach Scenarios and the Cyber Threat Landscape with Brian HonanPCI Breach Scenarios and the Cyber Threat Landscape with Brian Honan
PCI Breach Scenarios and the Cyber Threat Landscape with Brian Honan
Tripwire2K views
Security Information and Event Management by UTD Computer Security Group
Security Information and Event ManagementSecurity Information and Event Management
Security Information and Event Management
UTD Computer Security Group352 views
Nist 800 53 deep dive 20210813 by Kinetic Potential
Nist 800 53 deep dive 20210813Nist 800 53 deep dive 20210813
Nist 800 53 deep dive 20210813
Kinetic Potential149 views
The Demystification of successful cybersecurity initiatives. by FitCEO, Inc. (FCI)
The Demystification of successful cybersecurity initiatives.The Demystification of successful cybersecurity initiatives.
The Demystification of successful cybersecurity initiatives.
FitCEO, Inc. (FCI) 354 views
A Pragmatic Approach to SIEM: Buy for Compliance, Use for Security by Tripwire
A Pragmatic Approach to SIEM: Buy for Compliance, Use for SecurityA Pragmatic Approach to SIEM: Buy for Compliance, Use for Security
A Pragmatic Approach to SIEM: Buy for Compliance, Use for Security
Tripwire2.2K views
"Backoff" Malware: How to Know If You're Infected by Tripwire
"Backoff" Malware: How to Know If You're Infected"Backoff" Malware: How to Know If You're Infected
"Backoff" Malware: How to Know If You're Infected
Tripwire2.5K views
Log Monitoring and File Integrity Monitoring for PCI DSS, EI3PA and ISO 27001 by ControlCase
Log Monitoring and File Integrity Monitoring for PCI DSS, EI3PA and ISO 27001Log Monitoring and File Integrity Monitoring for PCI DSS, EI3PA and ISO 27001
Log Monitoring and File Integrity Monitoring for PCI DSS, EI3PA and ISO 27001
ControlCase355 views
Achieving Effective IT Security with Continuous ISO 27001 Compliance by Tripwire
Achieving Effective IT Security with Continuous ISO 27001 ComplianceAchieving Effective IT Security with Continuous ISO 27001 Compliance
Achieving Effective IT Security with Continuous ISO 27001 Compliance
Tripwire3.2K views
Security information event management by Jhoni Guerrero
Security information event managementSecurity information event management
Security information event management
Jhoni Guerrero 42 views
CISSPills #3.05 by Pierluigi Falcone, CISSP, CISM, CCSK, SABSA Foundation
CISSPills #3.05CISSPills #3.05
CISSPills #3.05
Pierluigi Falcone, CISSP, CISM, CCSK, SABSA Foundation145 views
QSA Shares PCI 3.0 Advice & Checklist by Tripwire
QSA Shares PCI 3.0 Advice & ChecklistQSA Shares PCI 3.0 Advice & Checklist
QSA Shares PCI 3.0 Advice & Checklist
Tripwire2.4K views
KSC_FIPS_FISMA101 by Kenneth Silsbee, MS
KSC_FIPS_FISMA101KSC_FIPS_FISMA101
KSC_FIPS_FISMA101
Kenneth Silsbee, MS420 views
PCI DSS Implementation: A Five Step Guide by AlienVault
PCI DSS Implementation: A Five Step GuidePCI DSS Implementation: A Five Step Guide
PCI DSS Implementation: A Five Step Guide
AlienVault3.2K views
NIST cybersecurity framework by Shriya Rai
NIST cybersecurity frameworkNIST cybersecurity framework
NIST cybersecurity framework
Shriya Rai990 views
Information Security Management by EC-Council
Information Security ManagementInformation Security Management
Information Security Management
EC-Council160 views
Security policies by Nishant Pahad
Security policiesSecurity policies
Security policies
Nishant Pahad1.4K views
Vendor Landscape: Security Information and Event Management by Info-Tech Research Group
Vendor Landscape: Security Information and Event ManagementVendor Landscape: Security Information and Event Management
Vendor Landscape: Security Information and Event Management
Info-Tech Research Group2.9K views
Soc Compliance Overview by Fabio Ferrari
Soc Compliance OverviewSoc Compliance Overview
Soc Compliance Overview
Fabio Ferrari253 views
Understanding Federal IT Compliance in Three Steps - SharePoint Fest DC by Adam Levithan
Understanding Federal IT Compliance in Three Steps - SharePoint Fest DCUnderstanding Federal IT Compliance in Three Steps - SharePoint Fest DC
Understanding Federal IT Compliance in Three Steps - SharePoint Fest DC
Adam Levithan114 views

More from Jason Rusch - CISSP CGEIT CISM CISA GNSA

Cobit v5 High Level Controls Topology by
Cobit v5 High Level Controls TopologyCobit v5 High Level Controls Topology
Cobit v5 High Level Controls TopologyJason Rusch - CISSP CGEIT CISM CISA GNSA
38 views1 slide
Cobit & ISO 27002 Governance Topology by
Cobit & ISO 27002 Governance TopologyCobit & ISO 27002 Governance Topology
Cobit & ISO 27002 Governance TopologyJason Rusch - CISSP CGEIT CISM CISA GNSA
95 views1 slide

More from Jason Rusch - CISSP CGEIT CISM CISA GNSA(20)

CSA v4 Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
CSA v4 TopologyCSA v4 Topology
CSA v4 Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA56 views
ISO.IEC 27001 27002-2013 by Jason Rusch - CISSP CGEIT CISM CISA GNSA
ISO.IEC 27001 27002-2013ISO.IEC 27001 27002-2013
ISO.IEC 27001 27002-2013
Jason Rusch - CISSP CGEIT CISM CISA GNSA116 views
ISO.IEC 27000 Series Map by Jason Rusch - CISSP CGEIT CISM CISA GNSA
ISO.IEC 27000 Series MapISO.IEC 27000 Series Map
ISO.IEC 27000 Series Map
Jason Rusch - CISSP CGEIT CISM CISA GNSA78 views
Cobit v5 High Level Controls Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
Cobit v5 High Level Controls TopologyCobit v5 High Level Controls Topology
Cobit v5 High Level Controls Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA38 views
Cobit & ISO 27002 Governance Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
Cobit & ISO 27002 Governance TopologyCobit & ISO 27002 Governance Topology
Cobit & ISO 27002 Governance Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA95 views
GLBA Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
GLBA TopologyGLBA Topology
GLBA Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA34 views
HIPAA Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
HIPAA TopologyHIPAA Topology
HIPAA Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA64 views
ISO.IEC_27001-27002-2013 Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
ISO.IEC_27001-27002-2013 TopologyISO.IEC_27001-27002-2013 Topology
ISO.IEC_27001-27002-2013 Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA540 views
PCI-DSS DESV Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
PCI-DSS DESV TopologyPCI-DSS DESV Topology
PCI-DSS DESV Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA267 views
DATA PROTECTION LAWS OF THE WORLD by Jason Rusch - CISSP CGEIT CISM CISA GNSA
DATA PROTECTION LAWS OF THE WORLDDATA PROTECTION LAWS OF THE WORLD
DATA PROTECTION LAWS OF THE WORLD
Jason Rusch - CISSP CGEIT CISM CISA GNSA4.3K views
Common Security Framework Summary by Jason Rusch - CISSP CGEIT CISM CISA GNSA
Common Security Framework SummaryCommon Security Framework Summary
Common Security Framework Summary
Jason Rusch - CISSP CGEIT CISM CISA GNSA511 views
Information_Governance_Risk_Compliance_Frameworks (v5) by Jason Rusch - CISSP CGEIT CISM CISA GNSA
Information_Governance_Risk_Compliance_Frameworks (v5)Information_Governance_Risk_Compliance_Frameworks (v5)
Information_Governance_Risk_Compliance_Frameworks (v5)
Jason Rusch - CISSP CGEIT CISM CISA GNSA318 views
SOX Titles Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
SOX Titles TopologySOX Titles Topology
SOX Titles Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA371 views
ITIL v3 Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
ITIL v3 TopologyITIL v3 Topology
ITIL v3 Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA516 views
HITRUST CSF Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
HITRUST CSF TopologyHITRUST CSF Topology
HITRUST CSF Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA1.1K views
HIPAA Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
HIPAA TopologyHIPAA Topology
HIPAA Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA251 views
GLBA Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
GLBA TopologyGLBA Topology
GLBA Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA184 views
COSO ERM Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
COSO ERM TopologyCOSO ERM Topology
COSO ERM Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA493 views
Octave Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
Octave TopologyOctave Topology
Octave Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA632 views
FFIEC I.T. Booklets Topology by Jason Rusch - CISSP CGEIT CISM CISA GNSA
FFIEC I.T. Booklets TopologyFFIEC I.T. Booklets Topology
FFIEC I.T. Booklets Topology
Jason Rusch - CISSP CGEIT CISM CISA GNSA462 views

Recently uploaded

Plumbing by
PlumbingPlumbing
PlumbingIwiss Tools Co.,Ltd
15 views14 slides
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L... by
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...Anowar Hossain
12 views34 slides
Digital Watermarking Of Audio Signals.pptx by
Digital Watermarking Of Audio Signals.pptxDigital Watermarking Of Audio Signals.pptx
Digital Watermarking Of Audio Signals.pptxAyushJaiswal781174
8 views25 slides
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th... by
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...ahmedmesaiaoun
12 views84 slides
_MAKRIADI-FOTEINI_diploma thesis.pptx by
_MAKRIADI-FOTEINI_diploma thesis.pptx_MAKRIADI-FOTEINI_diploma thesis.pptx
_MAKRIADI-FOTEINI_diploma thesis.pptxfotinimakriadi
7 views32 slides
DevOps-ITverse-2023-IIT-DU.pptx by
DevOps-ITverse-2023-IIT-DU.pptxDevOps-ITverse-2023-IIT-DU.pptx
DevOps-ITverse-2023-IIT-DU.pptxAnowar Hossain
8 views45 slides

Recently uploaded(20)

Plumbing by Iwiss Tools Co.,Ltd
PlumbingPlumbing
Plumbing
Iwiss Tools Co.,Ltd15 views
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L... by Anowar Hossain
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...
Anowar Hossain12 views
Digital Watermarking Of Audio Signals.pptx by AyushJaiswal781174
Digital Watermarking Of Audio Signals.pptxDigital Watermarking Of Audio Signals.pptx
Digital Watermarking Of Audio Signals.pptx
AyushJaiswal7811748 views
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th... by ahmedmesaiaoun
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...
Performance of Back-to-Back Mechanically Stabilized Earth Walls Supporting th...
ahmedmesaiaoun12 views
_MAKRIADI-FOTEINI_diploma thesis.pptx by fotinimakriadi
_MAKRIADI-FOTEINI_diploma thesis.pptx_MAKRIADI-FOTEINI_diploma thesis.pptx
_MAKRIADI-FOTEINI_diploma thesis.pptx
fotinimakriadi7 views
DevOps-ITverse-2023-IIT-DU.pptx by Anowar Hossain
DevOps-ITverse-2023-IIT-DU.pptxDevOps-ITverse-2023-IIT-DU.pptx
DevOps-ITverse-2023-IIT-DU.pptx
Anowar Hossain8 views
DESIGN OF SPRINGS-UNIT4.pptx by gopinathcreddy
DESIGN OF SPRINGS-UNIT4.pptxDESIGN OF SPRINGS-UNIT4.pptx
DESIGN OF SPRINGS-UNIT4.pptx
gopinathcreddy18 views
Design and analysis of a new undergraduate Computer Engineering degree – a me... by WaelBadawy6
Design and analysis of a new undergraduate Computer Engineering degree – a me...Design and analysis of a new undergraduate Computer Engineering degree – a me...
Design and analysis of a new undergraduate Computer Engineering degree – a me...
WaelBadawy656 views
What is Unit Testing by Sadaaki Emura
What is Unit TestingWhat is Unit Testing
What is Unit Testing
Sadaaki Emura23 views
Informed search algorithms.pptx by Dr.Shweta
Informed search algorithms.pptxInformed search algorithms.pptx
Informed search algorithms.pptx
Dr.Shweta16 views
Design of machine elements-UNIT 3.pptx by gopinathcreddy
Design of machine elements-UNIT 3.pptxDesign of machine elements-UNIT 3.pptx
Design of machine elements-UNIT 3.pptx
gopinathcreddy29 views
Electrical Crimping by Iwiss Tools Co.,Ltd
Electrical CrimpingElectrical Crimping
Electrical Crimping
Iwiss Tools Co.,Ltd25 views
NEW SUPPLIERS SUPPLIES (copie).pdf by georgesradjou
NEW SUPPLIERS SUPPLIES (copie).pdfNEW SUPPLIERS SUPPLIES (copie).pdf
NEW SUPPLIERS SUPPLIES (copie).pdf
georgesradjou14 views
How I learned to stop worrying and love the dark silicon apocalypse.pdf by Tomasz Kowalczewski
How I learned to stop worrying and love the dark silicon apocalypse.pdfHow I learned to stop worrying and love the dark silicon apocalypse.pdf
How I learned to stop worrying and love the dark silicon apocalypse.pdf
Tomasz Kowalczewski26 views
fakenews_DBDA_Mar23.pptx by deepmitra8
fakenews_DBDA_Mar23.pptxfakenews_DBDA_Mar23.pptx
fakenews_DBDA_Mar23.pptx
deepmitra812 views
CHEMICAL KINETICS.pdf by AguedaGutirrez
CHEMICAL KINETICS.pdfCHEMICAL KINETICS.pdf
CHEMICAL KINETICS.pdf
AguedaGutirrez8 views
Update 42 models(Diode/General ) in SPICE PARK(DEC2023) by Tsuyoshi Horigome
Update 42 models(Diode/General ) in SPICE PARK(DEC2023)Update 42 models(Diode/General ) in SPICE PARK(DEC2023)
Update 42 models(Diode/General ) in SPICE PARK(DEC2023)
Tsuyoshi Horigome23 views
Object Oriented Programming with JAVA by Demian Antony D'Mello
Object Oriented Programming with JAVAObject Oriented Programming with JAVA
Object Oriented Programming with JAVA
Demian Antony D'Mello107 views
Deutsch Crimping by Iwiss Tools Co.,Ltd
Deutsch CrimpingDeutsch Crimping
Deutsch Crimping
Iwiss Tools Co.,Ltd25 views
SWM L15-L28_drhasan (Part 2).pdf by MahmudHasan747870
SWM L15-L28_drhasan (Part 2).pdfSWM L15-L28_drhasan (Part 2).pdf
SWM L15-L28_drhasan (Part 2).pdf
MahmudHasan74787028 views

NIST sp800 53-v4 Topology

  • 1. SP 800-53 v4 Recommended Security Controls for Federal Information Systems 3 SECURITY CONTROL CLASSES MANAGEMENT 55 Controls OPERATIONAL 97 Controls TECHNICAL 93 Controls Program Management 16 Risk Assessment 5 Planning 6 Security Assessment Authorization 8 System and Services Acquisition 20 System and Communications Protections 43 Identification and Authentication 11 Configuration Management 11 Awareness and Training 4 Audit and Accountability 16 Contingency Planning 12 Access Controls 23 Authored by; Jason P. Rusch - CISSP, CISM, CISA, CGEIT, GNSA | jason@infosec-rusch.com Incident Response 11 Maintenance 6 Media Protection 8 Physical and Environmental Protection 20 Personnel Security 8 System and Information Integrity 17 18 SECURITY CONTROL GROUPS 3 CONTROL PRIORITIES