Security and Privacy Controls for Information Systems and Organizations, Revision 5Joint Task Force, National Institute of Standards and Technology, U.S. Department of Commerce. (2020, September). Security and privacy controls for information systems and organizations, revision 5 [White paper]. National Institute of Standards and Technology. https://doi.org/10.6028/NIST.SP.800-53r5
This resource provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets, individuals, other organizations, and the Nation from a diverse set of threats and risks, including hostile attacks, human errors, natural disasters, structural failures, foreign intelligence entities, and privacy risks. Focus reading on the Executive Summary, Chapter 1, Chapter 2, and Chapter 3 (up to page 17).