SP 800-53Ar5SP 800Finalpublication

SP 800-53A Rev. 5 - Assessing Security and Privacy Controls in Information Systems and Organizations

Provides guidelines for building effective assessment plans and managing assessments of security and privacy controls defined in SP 800-53. Supports organizations in determining the effectiveness of controls deployed in information systems.

View on NIST.gov

Publication Number

800-53A

Series

SP 800

Revision

Status

Final

Date

2022-01

control assessmentsecurity assessmentprivacy assessmentaudit

References(5)

SP 800-53r5SP 800-53 Rev. 5 - Security and Privacy Controls for Information Systems and Organizations SP 800-53BSP 800-53B - Control Baselines for Information Systems and Organizations SP 800-37r2SP 800-37 Rev. 2 - Risk Management Framework for Information Systems and Organizations OSCALOpen Security Controls Assessment Language (OSCAL)SP 800-137r1SP 800-137 Rev. 1 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations

Companion Documents(1)

SP 800-53r5SP 800-53 Rev. 5 - Security and Privacy Controls for Information Systems and Organizations

Implementations(1)

OSCALOpen Security Controls Assessment Language (OSCAL)