WHAT IS NIST 800-171?
NIST 800-171 is a cyber-security framework which provides a list of best practices in the form of controls that an organization may use to heighten the security of their systems and networks. Management and IT teams in government contracting organizations are finding this to be a daunting task. Compliance was due by December 31, 2017, and many organizations are behind. Riptide has developed a methodology to help customers contracting with the US Government to adopt the security requirements in National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171. This is mandated by DFARS (Defense Federal Acquisition Regulation Supplement) in order to protect CUI (Controlled Unclassified Information) in “Nonfederal Information Systems and Organizations.”
NIST has been around for a long time – but the need to comply has not. If you’re a small company not directly doing business with the government, this could be the first time you’re hearing about NIST 800-171 and the need to comply. Companies that are working with the government (either directly or indirectly further down the federal supply chain) need to be compliant with the latest NIST 800-171 mandate as of December 31, 2017.
NIST ComplianceConsulting Engagement
WHY YOU NEED IT
- A phishing test will allow you to understand the risk phishing could have on your organization from employees clicking on malicious emails or web-pages.
- Identify vulnerable areas of your business.