NIST has released SP 800-53 Revision 5 Public draft for review and comment. https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/draft
NIST is separating the controls catalog from the control baselines-SP800-53 Controls catalog, which will be online, and SP800-53B “bravo” Controls Baselines.
The following are available at https://go.usa.gov/xdevj
- Draft SP 800-53 Revision 5
- Summary of Changes from Revision 4
- Comment Template
- Open Security Control Assessment Language (XML, JSON, YAML) and .xlsx versions of the controls
The public can comment from through May 15, 2020.
Send comments and questions to sec-cert@nist.gov
NIST has provided a FAQ site for review: https://csrc.nist.gov/Projects/risk-management/faqs
NIST will release updated mappings to ISO27000, Cybersecurity Framework and Privacy Framework after Revision 5 is published as final.