Your Roadmap to Risk Reduction!

The Continuum GRC ITAM SaaS platform has hundreds of plugin modules available, such as:

Audit and compliance modules for NIST frameworks

NIST Special Publication 800-63A

These guidelines provide technical requirements for federal agencies implementing digital identity services and are not intended to constrain the development or use of standards outside of this purpose. This guideline focuses on the enrollment and verification of an identity for use in digital authentication. Central to this is a process known as identity proofing in which an applicant provides evidence to a credential service provider (CSP) reliably identifying themselves, thereby allowing the CSP to assert that identification at a useful identity assurance level. This document defines the technical requirements for each of the three identity assurance levels. This publication supersedes corresponding sections of NIST Special Publication (SP) 800-63-2.

Modules include:

  • NIST Special Publication 800-63A

NIST 800-63A Compliance Requirements

NIST SP 800-63A compliance is a documenting centred around the identity proofing process and the reliability of a digital identity.  There are three levels of identity assurance, the first being very basic with no hard proof required. The second level requires identifying materials used for remote or in-person identity proofing. The third and highest level of identity evidence is in-person using physical biometric proofing for the greatest assurance.

NIST SP 800-63A offers a digital identities guideline with appropriate levels of identity evidence. In short, it’s a  framework for ensuring reliable, secure online interactions for digital identities. 

Audit & Assessment Services with NIST 800-63A

The audit and assessment process begins with an overall risk assessment as to how the organization handles digital identities. The identity proofing process and authentication methods are reviewed.

The organization’s way of sharing information between different systems is assessed, as well as the security controls for protecting sensitive data. Finally, the organization is audited for how their policies and procedures align with NIST SP 800-63A requirements.

Undergoing an audit and assessment helps with the organization’s cybersecurity posture, builds trust among customers, and ensures you’re in compliance with these regulations around the identity proofing process.

FAQ

[sp_easyaccordion id="48655"]

What are you waiting for?

You are just a conversation away from putting the power of Continuum GRC to work for you. 

Contact us using the form below or calling us at 1-888-896-6207 for immediate assistance.

Amazing Benefits