STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 3 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

NIST 800-53 Controls

Browse 1205 security and privacy controls across 28 families.

Each control is linked to DISA CCI identifiers and STIG checks. Search for fast lookup by control ID or CCI.

Control Families

All Controls1205

AC Access Control143 AP Authority and Purpose2 AR Accountability, Audit, and Risk Management8 AT Awareness and Training17 AU Audit and Accountability66 CA Assessment, Authorization, and Monitoring31 CM Configuration Management66 CP Contingency Planning51 DI Data Quality and Integrity5 DM Data Minimization and Retention6 IA Identification and Authentication74 IP Individual Participation and Redress6 IR Incident Response42 MA Maintenance30 MP Media Protection26 PE Physical and Environmental Protection59 PL Planning16 PM Program Management37 PS Personnel Security18 PT PII Processing and Transparency21 RA Risk Assessment25 SA System and Services Acquisition145 SC System and Communications Protection159 SE Security2 SI System and Information Integrity116 SR Supply Chain Risk Management27 TR Transparency5 UL Use Limitation2

AU — Audit and Accountability

16 base controls

AU-1Policy and Procedures33 CCIs

AU-2Event Logging10 CCIs

AU-3Content of Audit Records6 CCIs

AU-4Audit Log Storage Capacity4 CCIs

AU-5Response to Audit Logging Process Failures5 CCIs

AU-6Audit Record Review, Analysis, and Reporting9 CCIs

AU-7Audit Record Reduction and Report Generation18 CCIs

AU-8Time Stamps4 CCIs

AU-9Protection of Audit Information8 CCIs

AU-10Non-Repudiation2 CCIs

AU-11Audit Record Retention2 CCIs

AU-12Audit Record Generation5 CCIs

AU-13Monitoring for Information Disclosure7 CCIs

AU-14Session Audit6 CCIs

AU-15Audit and Accountability2 CCIs

AU-16Cross-Organizational Audit Logging3 CCIs