All of our policies and templates are in Word or Excel format for easy customization.
-
Information Systems Inventory Policy and Template NIST CM-8
Policies $149.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST CM-8 System Component Inventory.
-
Risk Response Template NIST RA-7
NIST Control Audit Templates $149.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST RA-7 Risk Response.
-
Accounting of Personally Identifiable Information Disclosures Template NIST PM-21
NIST Control Audit Templates $149.00 Add to cartComposed by our technical writer, this customizable Excel Template supports compliance with NIST PM-21 Accounting of Disclosures.
-
Physical and Environmental Protection Policy – NIST PE-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PE-1.
-
NIST Cybersecurity Policy: SI-12 Record Retention and Destruction Policy
Policies$400.00Original price was: $400.00.$299.00Current price is: $299.00. Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST SI-12 Information Management and Retention.
-
System Security and Privacy Policy – NIST PL-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PL-1.
-
Personnel Information Security and Privacy Policy – NIST PS-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PS-1.
-
Information Security Policy NIST CA-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST ID.GV-1 CA-1 Assessment, authorization, and monitoring policy and procedures.
-
Personnel Information Transparency Policy – NIST PT-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PT-1.
-
Logical Access Administration Policies NIST AC-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PR.DS-1 AC-1 Access control policy and procedures.
-
System and Services Acquisition Policy – NIST SA-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST SA-1.
-
Computer Usage Policy NIST PL-4 & PS-6
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PL-4 Rules of Behavior & PS-6 Access Agreements.
-
System and Communication Protection Policy – NIST SC-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST SC-1.
-
Security Configuration Policy NIST SA-4
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PR.DS-1 SA-4 Security Configuration Policy.
-
System and Information Integrity Policy – NIST SI-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST SI-1.
-
System Development Life Cycle Change Management Policy NIST CM-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST PR.IP-1-3 CM-1 Configuration management policy and procedures.
-
Identity Access Control Policies NIST AC-1 and IA-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST AC-1 and IA-1.
-
Supply Chain Risk Management Policy – NIST SR-1
Policies $299.00 Add to cartComposed by our technical writer, this customizable Word document enables compliance with NIST SR-1.
Products Introduction:
The National Institute of Standards and Technology (NIST) published the fifth revision of Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organizations. The publication provides security and privacy controls for information systems and organizations to protect operations and assets, individuals, other organizations, and the Nation from a diverse set of threats and risks, including hostile attacks, human errors, natural disasters, structural failures, foreign intelligence entities, and privacy risks. NIST is a comprehensive list of security and privacy controls.
IS Security Solutions, LLC has mapped NIST 800-53 Rev 5 to multiple regulatory compliance requirements including: Sarbanes-Oxley, SSAE18 SOC2 (AICPA Trust Services), CMMC, PCI and HiTrust. Our technical writer has developed corresponding policies and process templates that are clear, concise, and written with the intent of being implemented and adhered to by employees at every level. Our policies are not high-level generic documents, instead the content reads as process and procedure guidelines.
In our SOC 2 Control Matrix, we have mapped the AICPA’s 33 Common Criteria, 28 additional availability, confidentiality, processing integrity and privacy control objectives and approximately 200 point of focus to the corresponding NIST 800-53 Rev 5 compliance controls. Furthermore, we took the time to also provide a simplified version of the control wording to clarify the intent of the control. Next we defined the documentation or support that will be required for an audit as evidence the control is in place and working as intended. Lastly, we specified the procedures your auditor is likely to perform to help ensure a clean audit opinion.