|
The National Institute of Standards and Technology Special Publication
800-53, Recommended Security Controls for Federal Information Systems,
offers a set of best practices created to assist federal agencies—and any
associated entities handling federal data such as state and local
governments, contractors and grantees—in implementing the
Federal
Information Security Management Act of 2002 (FISMA). To guide agencies in
implementing a risk-based information security program, the FISMA framework
maps security program elements to NIST documents such as 800-53 as well as
to a series of Federal Information Processing Standards (FIPS) circulars.
Specifically focusing on information security controls, NIST SP 800-53
presents security control concepts, a process for determining the specific
controls that should be implemented by the organization or agency, and more
a detailed set of minimum baseline security controls. NIST SP 800-53 includes 17
families of security controls grouped into three high level classes:
technical, operational and management. Examples of the 17 families include
access control, auditing, configuration management, incident response and
risk assessment. Each of the 17 control families, in turn, details a total
of 170 individual controls.
The Business Challenge
Perhaps the greatest challenge presented by NIST SP 800-53 rests in the broad
scope of its 170 individual security controls. These controls span the IT
infrastructure, calling for the monitoring and analysis of data generated by
all systems, network appliances and security solutions across the
enterprise. Thus, when implementing NIST SP 800-53 in support of FISMA
compliance, an enterprise must implement, collect and process a variety of
different types of data across the infrastructure. Processing includes
correlation, analysis and reporting of volumes of data. If the
responsibility to analyze all this information fell to a few IT security
analysts, or even to an entire team, timely response to important security
or compliance risks would be nearly impossible. For this reason, automation
is essential to effectively supporting all 170 NIST SP 800-53 controls.
The eIQ Solution
eIQ’s SecureVue
security, risk and audit management platform combines
enterprise security management (ESM) and IT governance, risk and compliance
(GRC) to help organizations address the greatest number of NIST SP 800-53
control families. By collecting, archiving, correlating, analyzing and
reporting on log, vulnerability, configuration, asset, performance and
network behavioral anomaly data, SecureVue merges the complex monitoring,
testing and auditing demands of FISMA and other standards into a single
solution. The automated end-to-end correlation of data—alongside built-in
analytics—renders data processing an easily manageable task.
SecureVue’s comprehensive compliance library—containing over 5,000 technical
and functional controls—enables organizations to define, monitor and measure
NIST SP 800-53 compliance. The platform’s wizard-based policy mapping also
allows organizations to add and modify regulations and best practices to
address a broad range of unique business drivers, including internal
practices, service level agreements and business partner requirements.
The following NIST SP 800-53 monitoring support chart compares SecureVue’s
integrated platform against traditional security information management (SIM)
and IT GRC solutions:
Supported
Partial Support
Not Supported
For More Information
SecureVue
Solution
NIST SP 800-53 Publication |
