Skip to main content

Compliance Services

NIST SP 800-171

Recently there have been notable cyber-attacks on the Democratic National Committee, the U.S. Postal Service, the State Department, NOAA, and the White House. Strong security measures to protect sensitive government data from hackers have never been more critical.  

Entities with access to federal information, including state and local governments and government contractors, have a burden to secure it, and our team of assessors can work with you to ensure that organization has the controls in place to safeguard federal information.

The Federal Government has, over many years, worked to standardize how different agencies handle sensitive information. It and has recently published regulations regarding Controlled Unclassified Information (CUI) to address the identification, marking, handling, storage and destruction of all non-classified information that has safeguarding or dissemination controls.  As a component of this effort, the National Institute of Standards and Technology (NIST) within the Department of Commerce has released a draft version of NIST Special Publication (SP) 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations. Although not mandatory at this time, contracts, memoranda of understanding, and other agreements may require adhering to the new guidelines.  The Government is expected to issue a Federal Acquisition Regulation (FAR) clause that will require people working under contract to abide by NIST SP 800-171. 

PKH Enterprises can help your organization comply with NIST SP 800-171 through our compliance analysis and program support. PKH Enterprises has been involved in the definition and implementation of CUI protocols and the technical controls that they entail. We would be happy to work with your team to make sure you are ready for these new rules.

Contact us with questions, or subscribe to our mailing list for occasional updates.

From the Blog
    Secret Link