The NIST 800-171 standard mandates that nonfederal contractors and subcontractors that handle, transmit, or store controlled unclassified information (CUI) or covered defense information (CDI) must comply with the NIST 800-171 by December 31, 2017 to maintain government contracts.
Following the testing guidance from the National Institute of Standards and Technology (NIST), A-LIGN conducts an assessment to determine your company’s compliance with NIST 800-171. This requirement is set through the Department of Defense’s (DoD) Federal Acquisition Regulations Supplement (DFARS). Contractors are urged to become compliant “as soon as practical.”
About NIST 800-171
NIST 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations, provides baseline controls for non-federal organizations to protect CUI and CDI. You can determine if your organization is exempt from this requirement by checking the CUI Registry.
The 14 control families in this standard are largely derived from the Moderate baseline in NIST 800-53. Additionally, the NIST 800-181 Guidance, Appendix D provides a table that maps the CUI Security Requirements to NIST 800-53 and ISO 27001.
NIST 800-171 is tailored to eliminate Federal Information Processing Standard (FIPS) 200 and NIST 800-53 requirements that are specific to government systems, not related directly to CUI, and that are expected to be satisfied without specification.
Your Trusted Advisor in NIST 800-171 Assessment Services
Choosing A-LIGN as your partner in becoming NIST 800-171 compliant benefits your organization by:
- Providing you with a team of professionals that have experience in successfully completing NIST 800-171, NIST 800-53, FISMA, and FedRAMP Assessments. This experience provides our team with an in-depth understanding of federal information security requirements.
- Streamlining the assessment process through efficient assessment methodology, saving your team time and resources.
- Equipping your organization with the resources needed to complete the assessment and meet contractual obligations.
The A-LIGN Edge
Our customized compliance solutions and streamlined audit process allow you to meet all of your audit and compliance needs with a single service provider. One-stop shopping means a stress-free audit process for you, as you work with one team who understands the unique needs of your organization. See what our clients have to say: