Sharing our expertise with you…
What is DFARS Compliance (NIST 800-171) and how does it compare to NIST 800-53?
NIST SP 800-171 and NIST SP 800-53, both provide a set of security requirements for protection of information and systems used by the government. The purpose and applicability of the security requirements depends on; 1) the information to be protected (controlled unclassified information (CUI) vs. classified information) and 2) the kind of system on which the information is processed, stored, or transmitted (Nonfederal information system vs. federal information system.
How do you measure up? 5 questions to ask before starting a controls assessment (FISMA, HITRUST, HIPAA, SOX, SOC, PCI)
Control assessments such as FISMA, HIPAA, HITRUST, SOX, SOC, and PCI are documentation heavy processes requiring formal documented policies and procedures, implementation of adequate controls, and continuous monitoring processes. This can seem pretty daunting especially without the right expertise and a pressing timeline.
Let us help you get it right the first time!