Guidance for NIST 800-171 Assessment & Compliance

Zoom Window Out
Larger Text | Smaller Text
Hide Page Header
Show Expanding Text
Printable Version
Save Permalink URL

Navigation: CHAPTER THREE: THE REQUIREMENTS > 3.2 Developing security and privacy assessment plans

3.2.2 Select procedures to assess the security or privacy controls.

Special Publication 800-53A provides assessment procedures for each security and privacy control and control enhancement in Special Publication 800-53. For each security or privacy control in the security plan and privacy plan to be included in the assessment, assessors select the corresponding assessment procedure from Appendix F (security assessment procedures) or Appendix J (privacy assessment procedures). The selected assessment procedures can vary from assessment to assessment based on the current content of the security plans and privacy plans and the purpose of the assessment (e.g., complete assessment, partial assessment).

Hosted by ABCI Consultants for Information Security Management Systems | Implementations, Training and Assessments for Compliance | (800) 644-2056