SC-28 System and Communications Protection

Protection of Information at Rest

Medium Priority Intermediate NIST CSF

NIST SC-28 control implementation guidance for Protection of Information at Rest. This control addresses System and Communications Protection requirements and provides comprehensive security measures.

Implementation Guidance

Implement comprehensive System and Communications Protection measures for Protection of Information at Rest. Follow NIST SP 800-53 guidelines and industry best practices for effective implementation.

Best Practices

Follow NIST guidelines, implement monitoring, regular reviews

Quick Facts

Guideline ID SC-28

Category System and Communications Protection

Priority Medium

Level Intermediate

Last Updated Mar 6, 2026

Get Expert Help Free Assessment

Related Guidelines

Explore other guidelines in the System and Communications Protection category.

SC-7(9) Medium

Enhanced SC-7 (9)

NIST SC-7(9) control implementation guidance for Enhanced SC-7 (9). This enhanced control addresses System and Communications Protection requirements ...

SC-27 Medium

System and Communications Protection 27

NIST SC-27 control implementation guidance for System and Communications Protection 27. This control addresses System and Communications Protection re...

SC-25 Medium

Thin Nodes

NIST SC-25 control implementation guidance for Thin Nodes. This control addresses System and Communications Protection requirements and provides compr...

Need Help Implementing This Guideline?

Our certified experts can help you align NIST guidelines with your HIPAA compliance program.

Contact Our Experts View All Guidelines