The Department of Defense is rolling out big changes for contractors in 2020 regarding their cyber security requirements
CONTACT US TODAY FOR MORE INFORMATION AND TO MAKE SURE YOU AND YOUR COMPANY IS PREPARED FOR THE TRANSITION TO THE CMMC
What is a NIST Assessment and Do I Need One?
If you are reading this, chances are good that you have been informed that your organization is required to have a “NIST Assessment”. As if you don’t have enough headaches. You are probably asking “What is a NIST assessment?” “Is a NIST assessment the same thing as a NIST cyber risk assessment?” Is that the same as a NIST risk assessment or NIST 800-171 assessment?” These are all important questions with straight forward answers.
NIST 800-171 refers to the National Institute of Standards and Technology Special Publication 800-171, which governs Controlled Unclassified Information (CUI) in Non-Federal Information Systems and Organizations. If your computer systems store non-classified federal information, you must comply with the requirements of the NIST 800-171 cyber security framework. The main path to compliance is a NIST 800-171 assessment sometimes commonly referred to as a NIST cyber security assessment. A NIST cyber risk assessment compares how your organization is aligned with the NIST 800-171 cyber security framework (i.e. a set of approximately 300 operational, procedural, management and technical controls that act as countermeasures against cyber intruders.
Hire a Qualified Cyber Security Consulting Firm for Your NIST Assessment
A proper NIST assessment can only be performed by a qualified, experienced cyber security consulting firm that understands NIST compliance, preparation for the NIST audit and readiness for the NIST audit.