<img src="https://ws.zoominfo.com/pixel/4CagHYMZMRWAjWFEK36G" width="1" height="1" style="display: none;">
Request Demo

What's New in NIST SP 800 53 Rev 5

down-arrow

NIST Special Publication (SP) 800-53 offers regulatory guidelines and controls for federal information systems except those relating to national security. This catalog of security and privacy controls has been used and adopted by a range of organizations both apart of the federal government and beyond due to the comprehensive nature of the control set.

Back in 2017, NIST released the first public draft of SP 800-53 Revision 5. In September of 2020, NIST released the official version of Rev 5, following what NIST describes as “a multi-year effort to develop the next generation of security and privacy controls needed to strengthen and support the Federal Government and every sector of critical infrastructure,” and with it has come a monumental sweep of changes for federal agencies and non-governmental organizations alike to use in an effort to protect the critical systems, components, and services that defend the United States.

Many of the major changes in NIST Special Publication 800-53 include, but are not limited to...

Controls for information systems and security controls are integrated into a seamless catalog for information systems and organizations. Privacy elements are now included as part of the unified catalog and integrated throughout 86 controls.

New Supply Chain Risk Management (SCRM) control family, with integrations throughout NIST 800 53 Rev 5.

Security and Privacy controls have become more outcome-based.

Clarifications of language between requirements as well as the relationship between security and privacy controls

Separation of control selection processes and actual controls, making them more accessible to other teams across an organization.

New state-of-the-practice controls based on threat intelligence and industry data to support cyber resilience, secure system design, and governance models.

Promotion of Integrated Risk Management and cybersecurity best practices (like the NIST CSF), allowing Rev 5 to be scalable and applicable to multiple avenues like large scale IT, cloud-based infrastructure, mobile devices, and IoT devices.

NIST SP 800-53 Rev 5 is making great strides to usher in a new generation of cybersecurity best practices. Bridging the gap between cybersecurity teams and organizational objectives. Using an integrated risk management solution like CyberStrong can help harmonize an organization's cybersecurity efforts across multiple frameworks and compliance regulations using our cutting edge AI technology to crosswalk and automate risk management processes to save organizations valuable time, energy and resources, as well as present information in a unified, human way.

If you have any questions about any NIST Special Publication including 800 53 Rev 5, 800 171, integrated risk management, or how CyberStrong is helping organizations meet their cybersecurity goals in 2021, give us a call at 1 800 NIST CSF or click here to learn more.

You may also like

NIST vs. ISO –What You Need To Know
on June 24, 2022

Organizations are increasingly on the lookout for ways to strengthen their cybersecurity capabilities. Many have found solace in compliance frameworks that help guide and improve ...

Top 5 Recommendations For Your ...
on June 22, 2022

Discover, design, validate, promote, and sustain best practice cyber protection solutions to safeguard your people and processes. As the cyber attack surface expands, the Center ...

June Product Update
on June 21, 2022

It’s a celebration! 🎵♪🎵♪ ♩Automate your scores, come on (Let’s automate) Automate your scores, come on (Let’s automate) There’s a party goin’ on right here An automation to last ...

Why You Need CIS Controls for ...
on June 17, 2022

The Center for Internet Security (CIS) is a non-profit organization that helps public sectors and private sectors improve their cybersecurity. The organization aims to help small, ...

Small Business Cybersecurity ...
on June 15, 2022

To achieve peace of mind in the modern threat landscape, small business owners must have a solid security strategy and budget in place. VIPRE’s SMB Security Trends report state ...

Do Small Businesses and Startups ...
on June 10, 2022

Did you know that about 60% of small businesses shut down within 6 months by falling victim to a data breach or cyber-attack, where the average global breach cost hovers at $3.62 ...