US · Framework
NIST SP 800 — NIST SP 800-53 / 800-171
SP 800-53 is a catalogue of security and privacy controls used across US federal systems and adopted widely worldwide; SP 800-171 protects controlled unclassified information held in non-federal systems.
What it is
SP 800-53 is a catalogue of security and privacy controls used across US federal systems and adopted widely worldwide; SP 800-171 protects controlled unclassified information held in non-federal systems.
United States (referenced globally) · SP 800-53 Rev. 5, maintained
Who it binds
US federal agencies and their contractors, and, by reference, private organisations that adopt the catalogue.
Key obligations
- Select and implement a control baseline (low, moderate or high)
- Assess control effectiveness
- Maintain continuous monitoring
- Protect controlled unclassified information under SP 800-171
How CCI addresses it
CySSURANCE maps 800-53 and 800-171 controls to your estate and computes coverage; EviGen automates the control evidence assessors ask for.
Official source
NIST Special Publication 800-53 Rev. 5 (and SP 800-171 for non-federal systems)
https://csrc.nist.gov/pubs/sp/800/53/r5/final
The linked text is the authoritative legal or standards source. CCI maps to it; it is not a CCI publication.