NIST Releases Supplemental Materials for SP 800-53 and SP 800-53B: Control Catalog and Control Baselines in Spreadsheet Format

National Institute of Standards and Technology (NIST) sent this bulletin at 01/26/2021 02:54 PM EST

NIST CYBERSECURITY and PRIVACY PROGRAM

NIST Releases Supplemental Materials for SP 800-53 and SP 800-53B: Control Catalog and Control Baselines in Spreadsheet Format

New and updated supplemental materials for NIST Special Publication (SP) 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations, and NIST SP 800-53B, Control Baselines for Information Systems and Organizations, are available for download to support the December 10, 2020, errata release of SP 800-53 and SP 800-53B:

Control Catalog Spreadsheet (NEW) The entire security and privacy control catalog in spreadsheet format
Control Baselines Spreadsheet (NEW) The control baselines of SP 800-53B in spreadsheet format

Both spreadsheets have been preformatted for improved data visualization and allow for alternative views of the catalog and baselines. Users can also convert the contents to different data formats, including text only, comma-separated values (CSV), and other formats that can provide greater flexibility (e.g., by ingesting it into an existing product or platform and/or to facilitate automation). The spreadsheets were created from the Open Security Controls Assessment Language (OSCAL) version of the SP 800-53 Rev. 5 controls, which is offered as a supplemental material to the publications.

Additionally, the following existing supplemental materials for SP 800-53 were recently updated:

Analysis of updates between SP 800-53 Rev. 5 and Rev. 4 (UPDATED)

Mappings between SP 800-53 Rev. 5 and other frameworks and standards:

NIST Cybersecurity Framework and NIST Privacy Framework (UPDATED)
ISO/IEC 27001 (UPDATED)

More information is available on the SP 800-53 publication page. Contact sec-cert@nist.gov with any questions and comments.

URLs from links above:

SP 800-53 Rev. 5 info
-Details:
https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final

-Control Catalog spreadsheet:
https://csrc.nist.gov/CSRC/media/Publications/sp/800-53/rev-5/final/documents/sp800-53r5-control-catalog.xlsx

-OSCAL version:
https://github.com/usnistgov/oscal-content/tree/master/nist.gov/SP800-53

-Analysis of updates between Rev. 5 and Rev. 4:
https://csrc.nist.gov/CSRC/media/Publications/sp/800-53/rev-5/final/documents/sp800-53r4-to-r5-comparison-workbook.xlsx

-Mapping to NIST CSF and PF: https://csrc.nist.gov/CSRC/media/Publications/sp/800-53/rev-5/final/documents/csf-pf-to-sp800-53r5-mappings.xlsx

-Mapping to ISO/IEC 27001:
https://csrc.nist.gov/CSRC/media/Publications/sp/800-53/rev-5/final/documents/sp800-53r5-to-iso-27001-mapping.docx

SP 800-53B info:
-Details:
https://csrc.nist.gov/publications/detail/sp/800-53b/final

-Control Baselines spreadsheet:
https://csrc.nist.gov/CSRC/media/Publications/sp/800-53b/final/documents/sp800-53b-control-baselines.xlsx

NIST Releases Supplemental Materials for SP 800-53 and SP 800-53B: Control Catalog and Control Baselines in Spreadsheet Format

NIST CYBERSECURITY and PRIVACY PROGRAM

NIST Releases Supplemental Materials for SP 800-53 and SP 800-53B: Control Catalog and Control Baselines in Spreadsheet Format

Connect with us