Ron Ross Discusses New NIST SP 800-53 Rev 4 Release

Ron Ross Head ShotOk … maybe we were a little hard on NIST yesterday. In this 8-minute interview with Ron Ross, the point-man for SP 800-53 Rev 4, Security and Privacy Controls for Federal Information Systems and Organizations, GovInfosecurity.com covers some of the core changes of the first major update since 2005.

Some of the interesting takeaways to note include the concept of “overlays” to address mission specific control customizations, a lengthy discussion of the new privacy controls (it’s even in the title now), unofficial online updates to keep pace with the breakneck speed of technology, and the reintroduction of “assurance” to emphasize their built-it-right strategy.

Of course any NIST security discussion wouldn’t be complete without touching on continuous monitoring and risk management as would be expected. Of particular interest is that Revision 4 also represents the culmination of efforts by the Joint Task Force Transformation Initiative Interagency Working Group with the hope of creating “one set of controls to rule them all” regardless of the area of the government they are applied.

Catch the full interview over at GovInfosecurity.com’s post. And be sure to grab your very own copy of NIST SP 800-53 Rev 4 (PDF) and give it a read.

#####

What do you think of the new 800-53? Let us know in the comments below. See ya!

3 comments for “Ron Ross Discusses New NIST SP 800-53 Rev 4 Release

  1. May 6, 2013 at 10:04 am

    #NoVABloggers Ron Ross Discusses New NIST SP 800-53 Rev 4 Release http://t.co/6QgH78yBbW

  2. May 6, 2013 at 10:48 am

    #NOVABLOGGER: Ron Ross Discusses New NIST SP 800-53 Rev 4 Release http://t.co/UNNqKrMRrc http://t.co/cYHF0lcT4I

  3. May 6, 2013 at 11:23 am

    # Ron Ross Discusses New NIST SP 800-53 Rev 4 Release http://t.co/6RfELgeZ6K

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.