All Department of Defense Contractors must meet the Defense Federal Acquisition Regulation Supplement (DFARS) minimum security standards by December 31, 2017.
Within NIST 800-171 there are 14 security requirement families:
3.1 Access Control – 22 Controls
3.2 Awareness & Training – 3 Controls
3.3 Audit & Accountability – 9 Controls
3.4 Configuration Management – 9 Controls
3.5 Identification & Authentication – 11 Controls
3.6 Incident Response – 3 Controls
3.7 Maintenance – 6 Controls
3.8 Media Protection – 9 Controls
3.9 Personnel Security – 2 Controls
3.10 Physical Protection – 6 Controls
3.11 Risk Assessment – 3 Controls
3.12 Security Assessment – 4 Controls
3.13 Systems & Comms Protection – 16 Controls
3.14 System & Information Integrity – 7 Controls
Each individual control must be met, and evidence provided to verify it is operational. If a control is not met, then a Plan of Action and Milestones (POAM) must be created and worked to completion so the control is met.
Global Security Ops has the expertise to assist you in meeting all 110 individual controls of the 14 security requirement families. Since meeting all 110 individual controls are likely not able to be met then we will create the needed POAMs and work with your company to meet the subject control.
We have the expertise is ensure when a government auditor drops by for an assessment you are prepared to pass it.
If you are unsure what if any Controlled Unclassified Information (CUI) you may have let Global Security Ops assist you with assessing the data, you currently have that is the property of the U.S. government.
Be prepared and do not assume you are ready make sure you are ready when you are 800-171 assessed. Global Security Ops will provide you with that assurance.