The NCCoE recently released a draft of the NIST Cybersecurity Practice Guide, Access Rights Management for the Financial Services Sector, SP 1800-9. The public comment period was open for 60 days and closed on October 31, 2017. The project team is now reviewing comments and will incorporate feedback into the final practice guide.
For ease of use, the guide is available in volumes:
- SP 1800-9a: Executive Summary (PDF) (web page)
- SP 1800-9b: Approach, Architecture, and Security Characteristics (PDF) (web page)
- SP 1800-9c: How-To Guides (PDF) (web page)
Or download the complete guide (PDF).
Read the two-page fact sheet for a brief overview of this project.