Request Demo

DFARS, NIST Cybersecurity Framework

Small Defense Contractors: Get Ready for NIST SP 800-171

down-arrow

The fact that defense contractors are required to comply with NIST SP 800-171 no later than December 31, 2017 is not new, however, many small defense contractors are worried about their ability to comply. For all contracts that are awarded prior to October 1, 2017, the Contractor must notify the Department of Defense Chief Information Officer of what NIST SP 800-171 security requirements are not implemented at that time. 

The recommendation is that small subcontractors should adopt new policies and procedures to comply with this rule, and begin implementing NIST SP 800-171.

Those small subcontractors who comply with the 2013 Safeguarding of Unclassified Controlled Technical Information DFARS clause with NIST SP 800-53 controls should make policy and process changes or adjust the configuration of existing IT within their organization. This way, aside from the 3.5.3. multi-factor authentication requirement, the company would not need to add any new hardware. 

CyberSaint is hosting a webinar July 25, 2017 that goes through “Three Steps to DFARS Success”. This informational opportunity is an effort for contractors understand where they need to start once they decide to start their DFARS compliance journeys.

Register on our website as spots are limited!

Read the source article here.

You may also like

Contextualize Quantified Cyber ...
on April 11, 2019

Now more than ever, CISO’s are being tasked with delivering hard metrics around an enterprise’s technology and digital risk. While this is nothing new for seasoned IT ...

NYDFS Implementation Grace Period ...
on April 9, 2019

Following the Equifax breach and growing concerns about the posture of the financial industry, New York State Department of Financial Services (NYDFS) released the initial ...

CEO's - Do You Know Where That ...
on April 5, 2019

It is no secret that cybersecurity has mystified many members of the C-suite since the function was introduced. With headlines dominated by breaches and hearings of information ...

Jerry Layden
Carbon Black Report Indicates ...
on April 2, 2019

In their third Global Incident Response Threat Report our Massachusetts neighbor, Carbon Black, illustrates not only the top industries for cyber attack but a deeply concerning ...

Legacy GRC And The Sunk Cost ...
on March 28, 2019

Last month, we covered how legacy GRC products and new integrated risk management (IRM) solutions can co-exist and in fact compliment each other. That said, in order for them to ...

Alison Furneaux
What To Expect From The Imminent ...
on April 6, 2019

While the NIST Privacy Framework may be the headliner for the most anticipated new publication from the National Institute of Standards and Technology, there are two imminent ...