Cyber Essentials → NIST 800-171 crosswalk
A control-by-control mapping between UK Cyber Essentials and NIST SP 800-171 Rev. 2. 4 mappings.
| Cyber Essentials | NIST 800-171 | Relationship | Notes |
|---|---|---|---|
| CE-1 Firewalls | 3.4.2 Establish and enforce security configuration settings | PartialCurated | Secure configuration & hardening |
| CE-2 Secure configuration | 3.4.2 Establish and enforce security configuration settings | EquivalentCurated | Secure configuration & hardening |
| CE-3 User access control | 3.1.1 Limit system access to authorized users | EquivalentCurated | Access control & identity |
| CE-5 Security update management | 3.11.2 Scan for vulnerabilities | EquivalentCurated | Vulnerability management |
Mappings marked “Official” derive from standards-body informative references; “Curated” mappings are authored by Cyber Compliance and provided for guidance only.