NIST 800-171

Are you Worried about the December 31st 2017 Deadline to fully implement NIST 800-171 Controls for Controlled Unclassified Information?

The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations is designed specifically to protect unclassified information outside the government.

With the amended DFARS 252.204.7008 (Compliance Safeguarding and Covered Defense Information Controls, and DFARS 252.204.7012 (Safeguarding Covered Defense Information and Cyber Incident Reporting) requirements, Department of Defense contractors will have until December 31, 2017 to fully Implement NIST 800-171 controls on covered contractor information systems.

Is your organization ready?

The mandate itself provides guidance and defines 14 categories of security requirement for Controlled Unclassified Information (CUI):

Access Control
Awareness and Training
Audit and Accountability
Configuration Management
Identification and Authentication
Incident Response
Maintenance
Media Protection
Personnel Security
Physical Protection
Risk Assessment
Security Assessment
System and Communications Protection
System and Information Integrity


ISMS Solutions, in partnership with NSF International, can provide your organization with all the necessary tools to assess, update, and meet the requirement. For more information on how ISMS Solutions can help your organization become compliant, contact us here.



Contact a Specialist