Call Us Today! (256) 704-0234 |solutions@techni-core.com
/, Techni-Core Blog/UPDATE: Final Publication of NIST SP 800-171, Revision #1

UPDATE: Final Publication of NIST SP 800-171, Revision #1

[av_heading tag=’h3′ padding=’25’ heading=’Final Version of NIST SP 800-171, Revision #1′ color=” style=’blockquote modern-quote modern-centered’ custom_font=” size=’30’ subheading_active=” subheading_size=’15’ custom_class=”][/av_heading]

[av_textblock size=’15’ font_color=” color=”]
29 Dec 2016 — we were recently notified of an update to (ever-changing) NIST 800-171. As is the norm with regulations like this, regular updates are to be expected, but an update this late in the game is something you should be aware of and planning for.

NIST released the summary of changes and final version of SP 800-171, Revision #1 on December 20th.  SP 800-171 – Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, is the significant NIST Special Publication document regarding implementation of DFARS (252.204-7012) requirements for defense contractors, mandated by December 31st 2017.  The draft version of this document was released in August of 2016 for comments.  The first version of SP 800-171 was released in June of 2015 and updated in January of 2016.  While many changes to this latest version are simple verbiage changes, a major addition in the draft, and now final publication, is the requirement for System Security Plans (SSP).

SSPs are a common artifact on contractor and government classified networks, but they have never been mandated on the unclassified networks.

While this is certainly good from a holistic IT security perspective, it will be an additional burden for organizations of any size.  The format and level of detail is not specified in the requirement, but it is noted that the plan should include…:

Descriptions of system boundaries, nature and operation of the system(s), how security is implemented, and connections to other systems.

[/av_textblock]

[av_heading tag=’h3′ padding=’10’ heading=’For the full NIST revision:’ color=” style=” custom_font=” size=” subheading_active=” subheading_size=’15’ custom_class=”][/av_heading]

[av_one_full first min_height=” vertical_alignment=” space=” custom_margin=” margin=’0px’ padding=’0px’ border=” border_color=” radius=’0px’ background_color=” src=” background_position=’top left’ background_repeat=’no-repeat’ animation=”]
[av_button label=’NIST 800-171 Final Publication’ link=’manually,http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-171r1.pdf ‘ link_target=’_blank’ size=’x-large’ position=’center’ icon_select=’yes’ icon=’ue835′ font=’entypo-fontello’ color=’theme-color’ custom_bg=’#444444′ custom_font=’#ffffff’]
[/av_one_full]

[av_one_full first min_height=” vertical_alignment=” space=” custom_margin=” margin=’0px’ padding=’0px’ border=” border_color=” radius=’0px’ background_color=” src=” background_position=’top left’ background_repeat=’no-repeat’ animation=”]
[av_button label=’Changes to NIST 800-171 ‘ link=’manually,http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-171r1.pdf ‘ link_target=’_blank’ size=’x-large’ position=’center’ icon_select=’yes’ icon=’ue835′ font=’entypo-fontello’ color=’theme-color’ custom_bg=’#444444′ custom_font=’#ffffff’]
[/av_one_full]

[av_one_full first min_height=” vertical_alignment=” space=” custom_margin=” margin=’0px’ padding=’0px’ border=” border_color=” radius=’0px’ background_color=” src=” background_position=’top left’ background_repeat=’no-repeat’ animation=”]
[av_textblock size=’20’ font_color=” color=”]
As you are well aware by now, the deadline for compliance is Dec. 2017. If you haven’t started thinking about and planning for your DFARS compliance process by now, it is a very good time to start. Techni-Core’s team of engineers are primed and ready for your questions about this update and the DFARS compliance process.

Give use a call to get your process started, today! (256) 704-0234

[/av_textblock]
[/av_one_full]

By | 2018-01-05T22:50:37+00:00 December 29th, 2016|News, Techni-Core Blog|0 Comments

About the Author:

Leave A Comment

Order our newest Book: "Weather the Storm in the Cloud"

Detailing how to move to the cloud and be DFARS 7012 Compliant.  Available on Amazon.com for Kindle!
PURCHASE ON AMAZON NOW
close-link