Along with NIST SP 800-53, what other 800 Series Publications correlate with FISMA compliance?

While NIST SP 800-53 garners the lionshare of attention for FISMA, and rightfully so, the following NIST ‘Special Publications’ are also instrumental when it relates to FISMA compliance:

• NIST SP 800-37: Risk Management Framework for Information Systems and Organizations - A System Life Cycle Approach for Security and Privacy
• NIST SP 800-53A: Assessing Security and Privacy Controls in Information Systems and Organizations
• NIST SP 800-53B: Control Baselines for Information Systems and Organizations
• NIST SP 800-61 - Computer Security Incident Handling Guide

These are just a handful of the dozens of ‘Special Publications’ 800 series of documents that share a credible nexus with FISMA compliance. Visit the NIST Computer Security Resource Center at https://csrc.nist.gov/publications/sp800 to learn more.

From Beginning to End, Complete Project Management for FISMA

With Arlington, we can manage your entire FISMA compliance engagement from beginning to end (i.e., from the initial FISMA scoping & gap assessment to post-Authorization to Operate (ATO) activities), providing essential services for getting you to the finish line in terms of FISMA compliance.  Core services and solutions offered include the following:

• Scoping & Gap (i.e., Readiness) Assessments
• Remediation Services (Policy and Procedures writing)
• Remediation Services (Technical and Operational)
• System Security Plan (SSP) Development
• Independent Security Assessment Reports (SAR)
• Continuous Monitoring (ConMon) Services