12 Days Left to Comply with NIST SP 800-171 Are You Ready??

12 Days Left to Comply with NIST SP 800-171   Are You Ready??


Wait, what is it? NIST SP 800-171 is a set of information security guidelines for protecting certain types of government information that might find its way into your company information systems.


Does this apply to me? Anyone (individual, business, or contractor) who processes, stores, or transmits information for or with federal agencies could be impacted. This includes all governmental contractual relationships. The government began including this requirement in its contracts in 2013. If you missed it, you might want to start paying attention because you have until December 31, 2017 to comply by implementing the information security requirements defined in NIST SP 800-171 and reporting cyber incidents.


What is my responsibility? Review your contracts for the following FAR/DFARS clauses to understand your cyber security responsibilities. Prime contractors and subcontractors are required to comply with this regulation, so you have the same obligation even if you are not the prime.


•             FAR Clause 52.204-2

•             FAR Clause 52.204-21

•             DFARS Clause 252.204-7012

•             DFARS Clause 252.204-7009

•             DFARS Clause 252.204.7008


Not ready?

Comments?   Challenges ?

The professionals at Security First & Associates can help.

Call 443-325-7890



Sorry, comments are closed for this post.