Benchmark: NIST 800-53 Revision 5
To obtain the latest version of the official guide, please visit https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final.
Overview
NIST 800-53 is a regulatory standard that defines the minimum baseline of security controls for all U.S. federal information systems except those related to national security. The controls defined in this standard are customizable and address a diverse set of security and privacy requirements.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-gcp-compliance
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select NIST 800-53 Revision 5.
Run this benchmark in your terminal:
powerpipe benchmark run gcp_compliance.benchmark.nist_800_53_rev_5
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run gcp_compliance.benchmark.nist_800_53_rev_5 --share
Benchmarks
- Access Control (AC)
- Audit and Accountability (AU)
- Assessment, Authorization, And Monitoring (CA)
- Configuration Management (CM)
- Identification and Authentication (IA)
- Incident Response (IR)
- Maintenance (MA)
- Media Protection (MP)
- Planning (PL)
- System and Services Acquisition (SA)
- System and Communications Protection (SC)
- System and Information integrity (SI)