Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term FIPS 199

Training Camp • Cybersecurity Glossary

What is FIPS 199?

FIPS 199 is the federal standard for categorizing information systems by low, moderate, or high impact to confidentiality, integrity, and availability.

Glossary > Governance, Risk & Compliance > FIPS 199

Understanding FIPS 199

FIPS 199, Standards for Security Categorization of Federal Information and Information Systems, is a U.S. mandatory federal standard that defines how agencies categorize information and systems by the potential impact of a loss of confidentiality, integrity, or availability. Each security objective is rated as low, moderate, or high impact, and the overall system categorization uses the high water mark of the three. This categorization drives the selection of security controls under FIPS 200 and NIST 800-53 within the Risk Management Framework.

Learn More About FIPS 199:

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →