The SYSTEM AND SERVICES ACQUISITION smart Template is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53 Revision 5.2.0) Library which has been developed by the U.S. Department of Commerce's National Institute of Standards and Technology (NIST). It establishes controls for systems and organizations.

The controls can be implemented within any organization or system that processes, stores, or transmits information.

What does the SYSTEM AND SERVICES ACQUISITION template cover?

The SYSTEM AND SERVICES ACQUISITION smart Template addresses the following areas:

Policy and Procedures
Allocation of Resources
System Development Life Cycle
Acquisition Process
System Documentation
Security and Privacy Engineering Principles
External System Services
Developer Configuration Management
Developer Testing and Evaluation
Development Process, Standards, and Tools
Developer-Provided Training
Developer Security and Privacy Architecture and Design
Customized Development of Critical Components
Developer Screening
Unsupported System Components
Specialization

Can I adapt my own compliance materials into a smart template?

Yes. If you already have compliance materials of your own, you can integrate them into a smart Compliance Template using the included development template. This allows you to supplement NORVA’s Compliance Assessment Templates with your own content while keeping the same practical, structured approach.

Is my data private and secure?

Yes. All templates are encrypted to protect the privacy and confidentiality of your data. NORVA Solutions does not have visibility into any data you enter in your downloaded template.