NIST SP 800-53
Streamline Technical Controls
Most U.S. federal information systems must base their security and privacy controls in NIST Special Publication (SP) 800-53v4, Security and Privacy Controls for Federal Information Systems and Organizations. However, compliance is not limited to the federal government. Many other organizations are required to comply with SP 800-53. For example, California’s State Administrative Manual requires state agencies, departments and offices to use NIST SP 800-53 in the planning, development, implementation, and maintenance of their information security programs.