Sicura Logo
Menu
Automation and Tools
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Cloud and Infrastructure Security
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Compliance and Security Practices
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
DevOps and Development Practices
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Frameworks and Standards
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Operating Systems and Platforms
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Risk and Governance
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Security Controls and Management
Security Control
GRC
CMMC
cATO
ATO
Windows Server
Windows Compliance
Linux Compliance
DevOps
STIG
Remediation
Enforce Compliance
DISA
Compliance Validation
Compliance Monitoring
Compliance Automation
Compliance
CIS Control
CIS Compliant
CIS Benchmark
CIS
Cloud Compliance
Security Automation
End-to-End Compliance Automation
Compliance Automation Workflow
Automation
NIST 800-53
NIST 800-172
NIST 800-171
NIST
Sicura Logo
To discover more about Sicura, head over to our website.
Visit website
Guides
No items found.
Categories
No items found.
Home
Glossary
NIST 800-172

NIST 800-172

What is NIST 800-172?

NIST SP 800-172 is a publication from the National Institute of Standards and Technology (NIST) that provides a set of enhanced security requirements for organizations handling Controlled Unclassified Information (CUI) in highly sensitive environments. It is intended to help organizations strengthen their cybersecurity posture in light of evolving threats, particularly against advanced persistent threats (APTs) and state-sponsored actors.

NIST 800-172 was developed to provide additional protections for organizations that need to safeguard CUI in environments that are highly sensitive and critical to national security or other high-risk areas. The publication aims to help mitigate risks posed by sophisticated cyber threats, such as those from nation-state actors, that go beyond the baseline security controls in NIST SP 800-171.

Why is NIST 800-172 important?

NIST 800-172 is crucial for ensuring that the U.S. government and contractors can effectively protect highly sensitive data, particularly in sectors such as defense, intelligence, and critical infrastructure. The guidelines are designed to address the evolving threat landscape and ensure that information is protected from sophisticated attacks.

By implementing the enhanced security controls in NIST 800-172, organizations can build a stronger defense against nation-state actors, APTs, and other highly capable adversaries, improving their resilience and ability to respond to attacks.

NIST 800-172 places a greater emphasis on securing the supply chain and ensuring that third-party vendors and contractors implement stringent security measures. This is essential in preventing attacks that originate from compromised suppliers or service providers.

Organizations working with the U.S. government or involved in critical national infrastructure may be required to follow the enhanced controls outlined in NIST 800-172 as part of contractual obligations. Compliance with these enhanced controls is essential to maintaining eligibility for high-risk, sensitive government contracts.

Recommended Articles

Requirements for DevOps Security: Part 3 in TAG Cyber Series

Read More

3 Key Tips for Implementing a Compliance Program from Scratch

Read More

Action Plan: Part 5 in TAG Cyber Series (Clone)

Read More
To discover more about Sicura, head over to our website.
Visit website
© 2024 Sicura