NIST 800-171 Compliance Check in Arizona

The U.S. Department of Defense (DOD) introduced an interim rule on December 30, 2015, within the Defense Acquisition Federal Regulation Supplement (DAFRS). This rule mandates that government contractors must adhere to the National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-171r1 by December 31, 2017.

Methodology:

Our approach to the Gap Assessment is centered on the specific requisites outlined in the NIST SP800-171 Security Requirements. Additionally, we leverage our internal framework and methodology to assess general information security practices. Chimi Security Professionals will conduct a thorough evaluation of the Organization’s compliance with the NIST SP800-171 Security Requirements, incorporating:

• Interviews with key personnel across core functional areas and IT departments.
• Examination of documentation supporting NIST SP800-171 compliance.
• Testing of identified NIST SP800-171 controls.
• Identification of gaps in the Organization’s compliance with the NIST SP800-171 Security Policy.

The NIST SP800-171 Security Requirements serve as the foundation for evaluating technical and procedural controls, encompassing the following domains:

• Access Control
• Awareness and Training
• Auditing and Accountability
• Configuration Management
• Identification and Authentication
• Incident Response
• Maintenance
• Media Protection
• Personal Security
• Physical Protection
• Risk Assessment
• Security Assessment
• System and Communication Protection
• System and Information Security

Chimi Security Professionals offers comprehensive support for your NIST 800-171 compliance needs. Contact Chimi Security Professionals at 202-505-7300 for expert assistance.