Link: NIST guide for securing Windows Vista
From the site (3/19/7):
NIST has collaborated with the Defense Information Systems Agency (DISA), the National Security Agency (NSA), and Microsoft Corporation to produce Microsoft's Windows Vista baseline security settings for the Enterprise (EC) and Specialized Security/ Limited Functionality (SSLF) environments. These recommended baselines are represented in the Microsoft Vista security guide. NIST also collaborated with industry to produce the XML representation of the recommended baselines in Extensible Configuration Checklist Description Format (XCCDF) and the Open Vulnerability and Assessment Language (OVAL).