If you are defense contractor company (either a Prime or Sub-Contractor) in the United States serving the U.S., or if you are a manufacturer, you must comply with NIST 800-171 and implement the 110 controls to properly secure your organization.

If you have not yet completed your NIST 800-171 basic assessment, sign up for the CyberCatch Continuous Compliance Assessment (CCA) Solution.

If you have not yet completed your NIST 800-171 basic assessment, sign up for the CyberCatch Continuous Compliance Software as a Service (SaaS) Solution.

THE PROBLEM:

Even if you have completed your NIST 800-171 basic assessment and reported your score in SPRS, you must now test your controls as mandated. Otherwise you will be out of compliance and be subject to False Claims Act legal liability and equally important, you will not be secure from the bad guys.

NIST 800-171 Security Control Requirements:

3.12.1

“Requires you to periodically assess the security controls...to determine if the controls are effective…”

CONTROL NUMBER: 5

3.12.2

“Requires you to develop and implement plans of action designed to correct deficiencies…”

CONTROL NUMBER: 3

3.12.3

“requires your to monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.”

CONTROL NUMBER: 5

So if you are not continuously testing your controls and fixing deficiencies, not only are you not secure and inviting the bad guys to break in easily, but you are also out of compliance with NIST 800-171 and the 110 score you reported in SPRS is inaccurate, and in reality it is 97 (110 – 13 points).

THE PROBLEM:
Even if you have completed your NIST 800-171 basic assessment and reported your score in SPRS, you must now test your controls as mandated. Otherwise you will be out of compliance and be subject to False Claims Act legal liability and equally important, you will not be secure from the bad guys.

NIST 800-171 Security Control Requirements:

3.12.1

Requires you to “periodically assess the security controls...to determine if the controls are effective…”

CONTROL POINTS: 5

3.12.2

Requires you to “develop and implement plans of action designed to correct deficiencies…”

CONTROL POINTS: 3

3.12.3

Requires you to “monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.”

CONTROL POINTS: 5

So if you are not continuously testing your controls and fixing deficiencies, not only are you not secure and inviting the bad guys to break in easily, but you are also out of compliance with NIST 800-171 and the 110 score you reported in SPRS is inaccurate, and in reality it is 97 (110 – 13 points).

THE SOLUTION:

AUTOMATED CONTROLS TESTING

Sign up for the CyberCatch Solution.
CyberCatch SaaS Automated Controls Testing

Most-affordable Pricing for DIB companies. Annual subscription based on size of employees. Only one fee. Pay annually and save:

1 - 50

EMPLOYEES
$ 250 per month
  • or $2,500 / year
  • SAVE $500

51 - 100

EMPLOYEES
$ 500 per month
  • or $5,000 / year
  • SAVE $1,000

101 - 250

EMPLOYEES
$ 750 per month
  • or $7,500 / year
  • SAVE $1,500

251 - 499

EMPLOYEES
$ 1k per month
  • or $10,000 / year
  • SAVE $2,000
For companies with 500 and more employees, please Contact Sales for a custom quote.

Ready to Get Started?

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Executive Perspectives