Compliance Standards

Companies seeking to work with US governmental agencies need to adhere to strict standards for cybersecurity. This is especially true for contractors looking to work with the US Department of Defense (DoD). To secure specific contracts, and maintain preferred status, you’ll need to comply with the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171. And to do so, there are several NIST 800 171 compliance tools at your disposal.

For companies looking to contract with the United States Department of Defense (DoD), it’s imperative to make sure your cyberdefenses are up to par. A big part of that is implementing the controls from Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations (SP 800-171), published by the National Institute of Standards and Technology (NIST). And understanding the NIST 800 171 controls is the first step toward compliance.

The protection of controlled unclassified information (CUI) in non-federal systems and organizations is as important as the security of the federal government data and information. This is because a threat to CUI in non-federal systems could disrupt the proper running of federal government business. The NIST SP 800 171 Revision 1, also called the NIST SP 800-171 Rev. 1 was created to tackle this issue. To further strengthen the confidentiality of the data in CUI,  the NIST SP 800-171 Revision 2, a revision of the NIST 800-171 Rev. 1, was published in February 2020.