Security Controls, Classes and Frameworks
NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations is a well-known NIST publication consisting of a catalog of security and privacy controls used to assist US federal government agencies in meeting the requirements of FISMA and serves as a best practice framework for other, non-federal entities.NIST controls are organized into 18 different control families, and as the new CCISO you will need to explain at least 9 of these to the CEO and CTO on their meaning, and examples of their implementation in a 12–15-page slide presentation in MS PowerPoint. On the last technical slide, a summary of the NIST Risk Management Framework Please use the following format for the presentation:Title SlideTopics of Discussion SlideControl ID/Family 1Control ID/Family 2Control ID/Family 3Control ID/Family 4Control ID/Family 5Control ID/Family 6Control ID/Family 7Control ID/Family 8Control ID/Family 9RMF 6-step life cycle with the additional “prepare” componentNote: Include detailed text in the “notes” section to include APA references.