NIST SP 800-53 Revision 4: Implementing Essential Security Controls with Cyber-Ark® Solutions

The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 provides guidance for the selection of security and privacy controls for federal information systems and organizations. Revision 4 is the most comprehensive update since the initial publication. This update was motivated principally by the expanding threat space and increasing sophistication of cyber attacks. Major changes include new security controls and control enhancements to address advanced persistent threats (APTs), insider threats, and system assurance; as well as technology trends such as mobile and cloud computing. This white paper provides a full examination of how the NIST changes impact organizations, why privileged accounts are continually targeted by cyber-attackers in APTs, and how the proper implementationof privileged account controls can lessen the attack surface of advanced threats.