Mapping & Analysis: NIST Privacy Framework to Risk Management Framework 800-53 Security Controls

NIST has provided a cross walk from the Privacy Framework (CSF) to the Risk Management Framework (RMF) 800-53 security controls. The bar chart below displays these blended data sets. Here is some summary count info by PF Function:

  1. Identify (ID) = 36 security controls
  2. Govern (GV) = 65 security controls
  3. Control (CT) = 55 security controls
  4. Communicate (CM) = 29 security controls
  5. Protect (PR) = 123 security controls
Link to the corresponding table chart - here.