NIST SP800-171 r3
Details
This download includes the NIST SP800-171 r3 provisions only so there are no mapped questions. Use this download if you just want the provisions and you want to create your own question set.
The protection of Controlled Unclassified Information (CUI) is of paramount importance to federal agencies and can directly impact the ability of the Federal Government to successfully conduct its essential missions and functions. This publication provides federal agencies with recommended security requirements for protecting the confidentiality of CUI when the information is resident in nonfederal systems and organizations.
The requirements apply to components of nonfederal systems that process, store, or transmit CUI or that provide protection for such components. The security requirements are intended for use by federal agencies in contractual vehicles or other agreements established between those agencies and nonfederal organizations. This publication can be used in conjunction with its companion publication, NIST Special Publication 800-171A, which provides a comprehensive set of procedures to assess the security requirements.
It is organised into families. Families organize supply chain risk managemement controls at their highest level.
The NIST SP 800-171 includes 110 controls across 14 high-level families which are:
- ACCESS CONTROL
- AWARENESS AND TRAINING
- AUDIT AND ACCOUNTABILITY
- CONFIGURATION MANAGEMENT
- IDENTIFICATION AND AUTHENTICATION
- INCIDENT RESPONSE
- MAINTENANCE
- MEDIA PROTECTION
- PERSONNEL SECURITY
- PHYSICAL PROTECTION
- RISK ASSESSMENT
- SECURITY ASSESSMENT
- SYSTEM AND COMMUNICATIONS PROTECTION
- SYSTEM AND INFORMATION INTEGRITY
Getting Started
Click "Book a demo" and our team will provide you with an overview of our content library within the 6clicks GRC platform.More Information
Jurisdiction | All |
---|---|
Type | Laws or related obligations |