Request Demo

DFARS, NIST Cybersecurity Framework

Small Defense Contractors: Get Ready for NIST SP 800-171

down-arrow

The fact that defense contractors are required to comply with NIST SP 800-171 no later than December 31, 2017 is not new, however, many small defense contractors are worried about their ability to comply. For all contracts that are awarded prior to October 1, 2017, the Contractor must notify the Department of Defense Chief Information Officer of what NIST SP 800-171 security requirements are not implemented at that time. 

The recommendation is that small subcontractors should adopt new policies and procedures to comply with this rule, and begin implementing NIST SP 800-171.

Those small subcontractors who comply with the 2013 Safeguarding of Unclassified Controlled Technical Information DFARS clause with NIST SP 800-53 controls should make policy and process changes or adjust the configuration of existing IT within their organization. This way, aside from the 3.5.3. multi-factor authentication requirement, the company would not need to add any new hardware. 

CyberSaint is hosting a webinar July 25, 2017 that goes through “Three Steps to DFARS Success”. This informational opportunity is an effort for contractors understand where they need to start once they decide to start their DFARS compliance journeys.

Register on our website as spots are limited!

Read the source article here.

You may also like

Reading Between the Lines of NIST ...
on July 9, 2019

On June 19th, the National Institute of Standards and Technology (NIST) released the much anticipated Rev 2 of SP 800-171 and the working draft of supplement SP 800-171B. As the ...

How We're Making DFARS Compliance ...
on July 2, 2019

With the Department of Defense (DoD) making DFARS compliance a requirement for all contractors doing business with the DoD, a great amount of stress has been put on DoD ...

What to Expect from the Security ...
on June 26, 2019

Digital Society is Real, and Security and Risk Management Solutions Must Embrace Digital to be Successful Digital Society: “The collection of people and things that are engaged in ...

Alison Furneaux
Integrating GRC: Compliance, ...
on June 25, 2019

In our Integrating Governance Risk and Compliance series, CyberSaint leadership explores the process through which cybersecurity leaders can reconfigure their organizations to ...

George Wrenn
Integrating GRC: Risk, ...
on June 19, 2019

In our Integrating Governance Risk and Compliance series, CyberSaint leadership explores the process through which cybersecurity leaders can reconfigure their organizations to ...

Padraic O'Reilly
CyberSaint at Gartner Security and ...
on June 13, 2019

Next week, forward-thinking security and risk leaders will congregate in National Harbor for Gartner’s annual Security and Risk Management Summit. As the preeminent voice in the ...