NIST SP800-171 r2 Question Set
This download includes the NIST SP800-171 r2 core controls and mapped questions that you can use to internally audit your organisation.
NIST SP 800-171 r2 is a set of standards and guidelines to help non-federal systems and organisations protecting controlled unclassified information set by the Federal Information Security Management Act (FISMA).
It is organised into families. Families organize supply chain risk managemement controls at their highest level.
The NIST SP 800-171 includes 110 controls across 14 high level families which are:
- ACCESS CONTROL
- AWARENESS AND TRAINING
- AUDIT AND ACCOUNTABILITY
- CONFIGURATION MANAGEMENT
- IDENTIFICATION AND AUTHENTICATION
- INCIDENT RESPONSE
- MEDIA PROTECTION
- PERSONNEL SECURITY
- PHYSICAL PROTECTION
- RISK ASSESSMENT
- SECURITY ASSESSMENT
- SYSTEM AND COMMUNICATIONS PROTECTION
- SYSTEM AND INFORMATION INTEGRITY
Getting StartedClick "Book a demo" and our team will provide you with an overview of our content library within the 6clicks GRC platform.