From the course: NIST 800-53r5: Introduction to Security and Privacy Controls
Join today to access over 24,900 courses taught by industry experts.
Control families
From the course: NIST 800-53r5: Introduction to Security and Privacy Controls
Control families
- Okay, so for our lesson 2.2, let's spend some time actually talking about the Control Families, what they mean, what they are. Again, they came from the security cut. They came from FIPS 200, that minimum security requirements. So in this lesson, pretty simple, you'll be able to list the controls, differentiate security between the security controls and the privacy controls. As I mentioned in Rev 4, they set up a whole set of privacy controls which are separate from the regular security controls. So here's the same table that I showed before, but we'll explain it a little bit more, are some of the ideas of these. So as I mentioned before, you have, say, the first one's access control, they call it AC, so that's the acronym. So AC1 would be the first control, AC 2, obviously, following like that, that's how this whole, this hierarchy of the controls are set up. So there's some that are technical, some that are more process-oriented, some of their policy, and there's some, the…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
(Locked)
Module two overview1m 48s
-
(Locked)
Control families6m 48s
-
(Locked)
Anatomy of a control4m 57s
-
Control selection5m 22s
-
(Locked)
Common, system, and hybrid controls7m 26s
-
(Locked)
Organization defined variables2m 46s
-
(Locked)
System security plan5m 37s
-
(Locked)
Control assessment8m 11s
-
(Locked)
POA&M6m 48s
-
(Locked)
-
-