DFARS CDI / NIST 800-171 Assessment and Compliance Services - Defense IT Solutions Inc. - News - Defense IT Solutions Inc.

DFARS CDI / NIST 800-171 Assessment and Compliance Services - Defense IT Solutions Inc. - News - Defense IT Solutions Inc.

+502 2286-5347
Ciudad de Guatemala,
Guatemala, Guatemala
Defensa Tecnologica S.A.
Go to content

Main menu:

DFARS CDI / NIST 800-171 Assessment and Compliance Services

Defense IT Solutions Inc.
Published by in News ·
Tags: NIST800171252.2047008252.2047009252.2047012DFARSCDI
 
All Organizations or Contractors that provided services to the Federal Government are required to provide evidence on how the organization is protecting Controlled Unclassified Information (CUI). Contractors and other organizations are obligated to be compliant with NIST 800-171. In this publication CUI is defined as ““information that law, regulation, or government wide policy requires safeguarding or disseminating controls, excluding information that is classified under Executive Order 13526, Classified National Security Information, December 29 2009, or any predecessor or successor order, or the Atomic Energy Act of 1954, as amended (Executive Order 13556)”.

 
 
Defense IT Solutions provides a review compliance program that consist of 1 to 3 weeks engagement with our security experts to provide guidance to your IT team.
 
 
Our NIST SP 800-171 services Include:

 
  • System categorization and agency control selection
  • Implementation and Assessment of applicable security controls
  • Cyber Incident Reporting
 
     
  • Authorization recommendation of system and Continuous monitoring
  •  
  • Business Due Diligence

 
 
The requirements outlined in  NIST SP 800-171 include and apply all the components of nonfederal information and how organizations store, process, and transmit CUI.  This includes devices, mainframes, workstations, servers, input and output (I/O) network components, operating systems, virtual machines, and applications.
 
 
NIST SP 800-171 Type of Controls & Security Requirements Families

 
 
  1. Access control
  2. Awareness and training
  3. Audit and accountability
  4. Configuration management
  5. Identification and authentication
  6. Incident response
  7. Maintenance
  8. Media protection
  9. Personnel security
  10. Physical protection
  11. Risk assessment
  12. Security assessment
  13. System and communications protection
  14. System and information integrity

 
 
All contractors that are interested in continue to work with the government should be in compliant with NIST 800-171 and its security requirements as well as the regulations and impact on the current IT infrastructure and information security programs implemented. If your organization is currently doing business with the Federal Government it is recommended to review the contracts and the new acquisition regulations to ensure that your organization is in compliance with security and government regulations.  There are many ways to demonstrate compliance with the new CUI regulations, for more information contact our Security Consultants.


No comments


Back to content | Back to main menu