What are NIST SP 800-171 Requirements?
NIST SP 800-171 provides detailed lists of security requirements contractors need to employ to meet the standards. Following is a list of the requirement “families”:
- Access Control
- Awareness and Training
- Auditing and Accountability
- Configuration Management
- Identification and Authentication
- Incident Response
- Maintenance
- Media Protection
- Personnel Security
- Physical Protection
- Risk Assessment
- Security Assessment
- System and Communication Protection
- System and Information Integrity
These families contain over 100 individual requirement statements (“controls”), which translate into over 680 required actions on the part of a DoD contractor. If your organization currently executes a DoD contract, or plans on proposing to DoD contracts in the future, you need to start now to align the technical, managerial, and operational facets of your information system to the NIST SP 800-171 framework.
Contact Us to Start your NIST SP 800-171 Implementation
If your organization is subject to NIST SP 800-171 requirements, us to set up an appointment to discuss a NIST SP 800-171 security assessment. We are based in Utah, but we are capable of and willing to provide our services anywhere in the world. If it looks like we can help, we’ll provide you with a free estimate. With our experience and unique approach, our cost is often an order-of-magnitude lower than our competitors.