NIST SP 800-53

Solution & Benefits Lifecycle Related Regulations

NIST SP 800-53 Compliance Lifecycle

The NIST SP 800-53 compliance lifecycle includes the following steps, all automatically enacted by the ProcessGene™ GRC Software Suite:

Lifecycle step NIST SP 800-53 activity
NIST SP 800-53 context establishment
  1. Definition of NIST SP 800-53 compliance related business processes
  2. Delineation of process diagrams (optional)
  3. Definition of assets within the NIST SP 800-53 scope
  4. Standardization and documentation of NIST SP 800-53 regulations, policies and procedures
Risk identification
  1. Risk description, identification of risk stakeholders
  2. Risk classification and determination of heat-maps
  3. Risk assessment and measurement
  4. Determination of Key Risk Indicators (KRIs)
  5. Risk tolerance determination
Control determination
  1. Definition of controls to mitigate identified NIST SP 800-53 risks
  2. Assignment of NIST SP 800-53 control owners
  3. Scheduling and monitoring NIST SP 800-53 control execution
  4. Assessment of residual risk levels
Requirement management
  1. Requirement definition
  2. Automated requirement workflow management
  3. Requirement fulfillment monitoring
NIST SP 800-53 audit and remediation
  1. Definition and scheduling of NIST SP 800-53 audit plans
  2. Definition of mechanisms for testing ongoing NIST SP 800-53 compliance
  3. Collection, analysis and storage of NIST SP 800-53 audit results
  4. Remediation plan definition, execution and follow-up
NIST SP 800-53 related incident management
  1. Incident recording
  2. NIST SP 800-53 related incident handling (using scheduled workflows)
  3. NIST SP 800-53 related incident analysis and reporting
  4. Incident monitoring and follow-up
NIST SP 800-53 certification
  1. Hierarchal NIST SP 800-53 certification process determination
  2. Establishment of an automated NIST SP 800-53 certification process
  3. Monitoring and reporting NIST SP 800-53 certification status
  4. Archiving NIST SP 800-53 certification history
Multi-Org management
  1. Determination of a global NIST SP 800-53 compliance baseline with mandatory components
  2. Establishing a workflow for examining local (subsidiary) variants
  3. Enforcement of enterprise guidelines, regulations and frameworks within subsidiaries
  4. Control NIST SP 800-53 compliance level both locally (per subsidiary) and globally from a central HQ cockpit

The ProcessGene™ NIST SP 800-53 Software Users

The ProcessGene™ NIST SP 800-53 compliance software provides value to the following users:
  1. C-level management (CEO, CFO, CIO, CRO, COO)
  2. Board of directors
  3. Compliance officers
  4. Internal auditors
  5. NIST SP 800-53 compliance managers



Continue to: Related Regulations >