NIST 800-53 Compliance

NIST 800-53 is a security compliance standard created by the U.S. Department of Commerce and the National Institute of Standards in Technology in response to the rapidly developing technological capabilities of national adversaries. It compiles controls recommended by the Information Technology Laboratory (ITL).

NIST 800-53 is mandatory for all U.S. federal information systems except those related to national security, and is technology-neutral. However, its guidelines can be adopted by any organization operating an information system with sensitive or regulated data. It provides a catalog of privacy and security controls for protecting against a variety of threats, from natural disasters to hostile attacks.