Information Technology Reference
In-Depth Information
Control
Reference
Description of
Applicability
a
Category/Document
PL
SP 800-14:
Generally Accepted Principles
and Practices for Securing Information
Technology Systems
PL
SP 800-12:
An Introduction to Computer
Security: The NIST Handbook
pS
personnel Security
PS
FIPS 200:
Security Controls for Federal
Information Systems
PS
SP 800-100:
Information Security
Handbook for Managers
PS
SP 800-66:
An Introductory Resource
Guide for Implementing the Health
Insurance Portability and Accountability
Act (HIPAA) Security Rule
PS
SP 800-14:
Generally Accepted Principles
and Practices for Securing Information
Technology Systems
PS
SP 800-12:
An Introduction to Computer
Security: The NIST
Handbook
rA
risk Assessment
RA
SP 800-83:
Guide to Malware Incident
Prevention and Handling
RA
SP 800-66:
An Introductory Resource
Guide for Implementing the Health
Insurance Portability and Accountability
Act (HIPAA) Security Rule
RA
SP 800-65:
Integrating Security into the
Capital Planning and Investment
Control Process
RA
SP 800-63:
Recommendation for
Electronic Authentication
RA
SP 800-60:
Guide for Mapping Types of
Information and Information Systems to
Security Categories