SC-28 System and Communications Protection

Protection of Information at Rest

Medium Priority Intermediate NIST CSF

NIST SC-28 control implementation guidance for Protection of Information at Rest. This control addresses System and Communications Protection requirements and provides comprehensive security measures.

Implementation Guidance

Implement comprehensive System and Communications Protection measures for Protection of Information at Rest. Follow NIST SP 800-53 guidelines and industry best practices for effective implementation.

Best Practices

Follow NIST guidelines, implement monitoring, regular reviews

Quick Facts

Guideline ID SC-28

Category System and Communications Protection

Priority Medium

Level Intermediate

Last Updated Mar 7, 2026

Get Expert Help Free Assessment

Related Guidelines

Explore other guidelines in the System and Communications Protection category.

SC-28(2) Medium

Enhanced SC-28 (2)

NIST SC-28(2) control implementation guidance for Enhanced SC-28 (2). This enhanced control addresses System and Communications Protection requirement...

SC-23(1) Medium

Enhanced SC-23 (1)

NIST SC-23(1) control implementation guidance for Enhanced SC-23 (1). This enhanced control addresses System and Communications Protection requirement...

SC-7(12) Medium

Enhanced SC-7 (12)

NIST SC-7(12) control implementation guidance for Enhanced SC-7 (12). This enhanced control addresses System and Communications Protection requirement...

Need Help Implementing This Guideline?

Our certified experts can help you align NIST guidelines with your HIPAA compliance program.

Contact Our Experts View All Guidelines