Is a contractor’s system security plan (“SSP”) Controlled Unclassified Information (“CUI”)? The answer depends on who is asking the question.
Deciding when to hire an expert to help with cyber compliance can be daunting. We have updated our Comprehensive NIST SP 800-171 Self-Assessment Tool with DIY/outsource recommendations for each requirement and objective.
We are excited to announce the release of the new version of our CMMC 2.0/NIST SP 800-171 Self-Assessment Tool. This version includes automated FAR and Above and SPRS scoring and much more!
The FAR and Above Program provides a risk-based, phased approach to achieving the requirements in NIST SP 800-171.
Imagine the following scenario: As part of Project Road Runner, a new initiative, the United States Army, a portion of (more…)