Security Technical Implementation Guides Insights

What is Security Technical Implementation Guides?

Security Technical Implementation Guides (STIGs) are configuration standards for DoD Information Assurance (IA) and IA-enabled devices/systems. Since 1998, DISA has provided the DoD with STIGs to improve the security posture of their systems and networks. The STIGs contain technical guidance to 'lock down' information systems/software that might otherwise be vulnerable to a malicious computer attack.

Find organizations using Security Technical Implementation Guides on Sumble →

What other technologies are related to Security Technical Implementation Guides?

Security Technical Implementation Guides Complementary Technologies

NIST Risk Management Framework

The NIST Risk Management Framework (RMF) provides a process for managing security and privacy risk. STIGs can be used as part of the implementation of security controls defined in the RMF. Thus, they are complementary.

mentioned alongside Security Technical Implementation Guides in 11% (104) of relevant job posts

Security Content Automation Protocol

SCAP is a method for automating the assessment of STIG compliance. STIGs are often provided in SCAP format to facilitate automated checking. Thus, it is complementary.

mentioned alongside Security Technical Implementation Guides in 17% (51) of relevant job posts

CNSSI 1253

CNSSI 1253 provides security categorization and control selection guidance for national security systems. STIGs are often used to implement the specific security controls outlined in CNSSI 1253, making them complementary.

mentioned alongside Security Technical Implementation Guides in 8% (102) of relevant job posts