{"frameworkId":"nist-800-53","label":"NIST SP 800-53 Rev 5","version":"5.2.0","description":"NIST SP 800-53 \u2014 comprehensive catalog of security and privacy controls for information systems. Foundation for FedRAMP and widely adopted across US federal and private-sector organizations.","homepageUrl":"https://csrc.nist.gov/pubs/sp/800/53/r5/upd1/final","css":"fw-nist","totalControls":1189,"registryKey":"nist-800-53","csvColumn":"Nist80053","displayOrder":2,"scoring":{"method":"profile-compliance","profiles":{"Low":{"label":"NIST 800-53 Low","css":"fw-nist","profileKey":"Low","controlCount":149},"Moderate":{"label":"NIST 800-53 Moderate","css":"fw-nist","profileKey":"Moderate","controlCount":287},"High":{"label":"NIST 800-53 High","css":"fw-nist-high","profileKey":"High","controlCount":370,"colors":{"light":{"background":"#dbeafe","color":"#1e40af"},"dark":{"background":"#1E3A5F","color":"#60A5FA"}}},"Privacy":{"label":"NIST 800-53 Privacy","css":"fw-nist-privacy","profileKey":"Privacy","controlCount":96,"colors":{"light":{"background":"#ede9fe","color":"#5b21b6"},"dark":{"background":"#4C1D95","color":"#C4B5FD"}}}}},"colors":{"light":{"background":"#e8f0fe","color":"#1a56db"},"dark":{"background":"#1E3A5F","color":"#93C5FD"}},"groupBy":"family-letter-prefix","groupLabel":"family","groups":{"AC":"Access Control","AT":"Awareness & Training","AU":"Audit & Accountability","CA":"Assessment, Authorization & Monitoring","CM":"Configuration Management","CP":"Contingency Planning","IA":"Identification & Authentication","IR":"Incident Response","MA":"Maintenance","MP":"Media Protection","PE":"Physical & Environmental Protection","PL":"Planning","PM":"Program Management","PS":"Personnel Security","PT":"PII Processing & Transparency","RA":"Risk Assessment","SA":"System & Services Acquisition","SC":"System & Communications Protection","SI":"System & Information Integrity","SR":"Supply Chain Risk Management"}}
|