RegScale Announces Support for the NIST 800-82 Catalog

October 23, 2022 | By J. Travis Howerton

The National Institute of Standards and Technology (NIST) Special Publication (SP) Revision 1 provides guidance on how to secure Industrial Control Systems (ICS), including Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC), while addressing their unique performance, reliability, and safety requirements. The document provides an overview of ICS and typical system topologies, identifies typical threats and vulnerabilities to these systems, and provides recommended security countermeasures to mitigate the associated risks.

At RegScale, we give Operational Technology (OT) customers easy and free tools to get started with building a fully compliant 800-82 program with support for tracking policies, related assessments, evidence collection, issues management/performance improvement, and other related workflows. As of October 23, 2022, RegScale has announced that we officially support the NIST SP 800-82 as a catalog within our platform with automated tools/wizards for building compliant inspection programs. In addition, we have published multiple machine readable formats of 800-82 including the raw JSON and NIST OSCAL that are available upon request. These artifacts are freely available for others to reuse in their compliance automation programs using machine readable formats.

Schedule a free demo today to learn how RegScale can help you continuously meet your OT security requirements. If you are ready to start automating your compliance processes for creating and managing 800-82 requirements in your OT program, this demo will also show how you can leverage RegScale to deliver continuous compliance. In addition to offering free tools, we have experienced compliance professionals who can assist you in creating robust 800-82 compliance artifacts that will help you pass audits and reduce your risk with ease. With RegScale, our customers get software with a service to provide a concierge like experience for reducing risk related to their OT systems.

Ready to get started?

Choose the path that is right for you! 

Skip the line

My organization doesn’t have GRC tools yet and I am ready to start automating my compliance with continuous monitoring pipelines now. 


My organization already has legacy compliance software, but I want to automate many of the manual processes that feed it.