How many controls does NIST SP 800-37 have?

NIST SP 800-37 contains 20 controls organized across 4 domains.

Where does NIST SP 800-37 apply?

NIST SP 800-37 is applicable in United States. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does NIST SP 800-37 map to?

NIST SP 800-37 has control-to-control mappings with 221 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with NIST SP 800-37 compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

NIST SP 800-37

Risk Management Framework for Information Systems and Organizations.

Domains

NIST SP 800-37: Risk Framework & Governance

NIST SP 800-37: Risk Monitoring & Review

NIST SP 800-37: Risk Assessment

NIST SP 800-37: Risk Treatment

Frequently Asked Questions

Map NIST SP 800-37 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform