Whitepaper
Deploying Tableau Server in U.S. Federal Government Applications: FISMA | NIST SP 800-53 | DISA STIG
Deployments of Tableau Server in the U.S. federal government require compliance with various cybersecurity law, directives, and frameworks. Ensuring that the system is deployed and configured in accordance with these requirements is key to obtaining an Authority to Operate (ATO) the system. The cybersecurity requirements vary depending on the specific U.S. federal agency as well as the risk profile of the data the system handles. This whitepaper provides an overview of the National Institute of Standards and Technology (NIST) SP 800-53 cybersecurity framework and provides guidance on:
- Which NIST SP 800-53 controls are applicable to Tableau Server
- How to configure Tableau Server to comply with the applicable NIST SP 800-53 controls
- The mapping of applicable NIST SP 800-53 controls to the Application Security and Development Security Technical Implementation Guide (STIG) in use in the U.S. Department of Defense