Compliance Services

NIST SP 800-53 Services

NIST SP 800-53 Assessment Services

NIST SP 800-53 provides a catalog of security and privacy controls for federal information systems and organizations and a process for selecting controls to protect organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the nation from a diverse set of threats. These threats include hostile cyber-attacks, natural disasters, structural failures, and human errors. The controls are customizable and implemented as part of an organization-wide process that manages information security and privacy risk across 18 different control families, outlined below:

  1. Access Control
  2. Audit and Accountability
  3. Awareness and Training
  4. Configuration Management
  5. Contingency Planning
  6. Identification and Authentication
  7. Incident Response
  8. Maintenance
  9. Media Protection
  10. Personnel Security
  11. Physical and Environmental Protection
  12. Planning
  13. Program Management
  14. Risk Assessment
  15. Security Assessment and Authorization
  16. System and Communications Protection
  17. System and Information Integrity
  18. System and Services Acquisition

Compass IT Compliance Services

  • NIST SP 800-53 Risk Assessment - Assess your current level of compliance with NIST SP 800-53, identify gaps in controls, and identify key work areas that your organization must address to achieve and/or maintain compliance with the framework
  • NIST SP 800-53 Audit - Our experienced, certified IT Auditors will examine your IT controls mapped against NIST SP 800-53 requirements, obtain evidence to determine if the controls are operating effectively to achieve your organization's objectives and satisfy framework requirements, and provide attestation of audit along with remediation strategies. A deeper dive assessment compared to the NIST SP 800-53 Risk Assessment, the NIST SP 800-53 Audit will include evidence sampling
  • NIST SP 800-53 Advisory Services - Work with your organization and tailor our project to your specific needs to address any concerns that you have related to NIST SP 800-53, assist in the implementation and updating of policies and procedures, or assist in assessing the risk your third party providers pose related to NIST SP 800-53

Let Compass IT Compliance assist your organization in assessing any risks present through our NIST SP 800-53 services so you can secure your security and privacy environment, comply with regulatory compliance requirements, and save time, money, and resources in the process. Contact Us today to discuss your unique situation. Secure. Comply. Save.

NIST Blog Posts

Contact Us