SC-28 System and Communications Protection

Protection of Information at Rest

Medium Priority Intermediate Level NIST CSF

NIST SC-28 control implementation guidance for Protection of Information at Rest. This control addresses System and Communications Protection requirements and provides comprehensive security measures.

Implementation Guidance

Implement comprehensive System and Communications Protection measures for Protection of Information at Rest. Follow NIST SP 800-53 guidelines and industry best practices for effective implementation.

Best Practices

Follow NIST guidelines, implement monitoring, regular reviews

Testing Procedures

Control testing, compliance verification, effectiveness assessment

Related Guidelines

Related SC controls, complementary security measures

Quick Facts

Guideline ID: SC-28
Category: System and Communications Protection
Priority: Medium
Level: Intermediate
Views: 35
Last Updated: Dec 5, 2025

Actions

Get Expert Help Free Assessment

Additional Resources

NIST SP 800-53, NIST SP 800-53A, ISO 27001, COBIT

Related Guidelines

SC-30(4) Medium

Enhanced SC-30 (4)

NIST SC-30(4) control implementation guidance for Enhanced SC-30 (4). This enhanced control addresses System and Communi...

SC-18(4) Medium

Enhanced SC-18 (4)

NIST SC-18(4) control implementation guidance for Enhanced SC-18 (4). This enhanced control addresses System and Communi...

SC-12 Medium

Cryptographic Key Establishment and Management

NIST SC-12 control implementation guidance for Cryptographic Key Establishment and Management. This control addresses Sy...