STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.

NIST 800-53 Controls

Rev 5Rev 4

Browse 862 security and privacy controls across 26 families. (filtered to No Baseline, Low, Privacy, High, Moderate baselines)

Each control is linked to DISA CCI identifiers and STIG checks. Search for fast lookup by control ID or CCI. Switch to Rev 5 for the latest controls.

Control FamiliesAll Controls862
AC Access Control112AP Authority and Purpose2AR Accountability, Audit, and Risk Management8AT Awareness and Training10AU Audit and Accountability58CA Assessment, Authorization, and Monitoring22CM Configuration Management50CP Contingency Planning48DI Data Quality and Integrity5DM Data Minimization and Retention6IA Identification and Authentication56IP Individual Participation and Redress6IR Incident Response34MA Maintenance26MP Media Protection22PE Physical and Environmental Protection50PL Planning10PM Program Management16PS Personnel Security15RA Risk Assessment13SA System and Services Acquisition86SC System and Communications Protection116SE Security2SI System and Information Integrity82TR Transparency5UL Use Limitation2

AU — Audit and Accountability

16 base controls

AU-1Audit and Accountability Policy and Procedures
33 CCIs
AU-2Audit Events
10 CCIs
AU-3Content of Audit Records
6 CCIs
AU-4Audit Storage Capacity
4 CCIs
AU-5Response to Audit Processing Failures
5 CCIs
AU-6Audit Review, Analysis, and Reporting
9 CCIs
AU-7Audit Reduction and Report Generation
18 CCIs
AU-8Time Stamps
4 CCIs
AU-9Protection of Audit Information
8 CCIs
AU-10Non-repudiation
2 CCIs
AU-11Audit Record Retention
2 CCIs
AU-12Audit Generation
5 CCIs
AU-13Monitoring for Information Disclosure
7 CCIs
AU-14Session Audit
6 CCIs
AU-15Audit and Accountability
2 CCIs
AU-16Cross-organizational Auditing
3 CCIs