Question

Please explain to me in your own words (no cut and past) what each of the following documents mean and what they are trying to accomplish.

what does each law number refers too and what does it do ?

• 800-18
• 800-59
• 800-30

Answer 1

Solution:-

800-18:

(NIST Special Publication 800-18) is a Guide for Developing Security Plans for Federal Information Systems (GSSP)

This provides information on how to create a system security plan and which is designed to used in different organizational structures and use as a reference for those have responsibilities on security planning activities

800-59:

(NIST Special Publication 800-59) is Guideline for Identifying an Information System as a National Security System

This provides guidelines to the federal agencies whose are developed with the department of defense and national security agency, to determine any of their systems are national security systems.

800-30:

(NIST Special Publication 800-30) is Risk Management Guide for Information Technology Systems

The goal of this is to help organizations to manage any IT-related mission risks. It provides information for security controls that can be used to avoid the risk for better protection to the IT systems which process, store, and carry this information.

Thank you, Have a great day:-)