The NIST 800 standards are a set of documents developed and maintained by the National Institute of Standards and Technology (NIST) to provide guidance on the security of federal government information systems. The standards are organized into eight categories:
1. Security and Privacy: These standards provide guidance on how to protect information systems and the data they contain from unauthorized access, use, disclosure, disruption, modification, or destruction.
2. Risk Management: These standards provide guidance on how to identify, assess, and manage risks associated with the use of information systems.
3. System and Services Acquisition: These standards provide guidance on how to acquire and manage IT systems and services.
4. System and Communications Protection: These standards provide guidance on how to secure the physical and logical components of an IT system.
5. System and Information Integrity: These standards provide guidance on how to protect the integrity of information and systems.
6. Contingency Planning: These standards provide guidance on how to plan for and respond to unexpected events that affect the availability of IT systems and services.
7. Incident Response: These standards provide guidance on how to respond to security incidents.
8. Compliance: These standards provide guidance on how to ensure compliance with applicable laws, regulations, and policies.
.png)
.png)
.png)
.png)