Final Draft of NIST SP 800-171A Gives Contractors Something to Sample
Client Alert | 1 min read | 03.01.18
Last week, the National Institute of Standards and Technology (NIST) released its Final Draft of NIST Special Publication (SP) 800-171A, which will again be open for comment through March 23, 2018. First proposed in November, the publication provides guidance to both contractors and agencies regarding how to conduct assessments under the prominent cybersecurity standard NIST SP 800-171, which lays the foundation for how contractors must protect all forms of Controlled Unclassified Information, including Covered Defense Information. The Final Draft may be most notable for what it references but does not actually include: In response to initial comments requesting sample system security plan (SSP) templates, the Final Draft explains that NIST will post sample templates to its Computer Security Resource Center. Not wasting any time, sample templates of both a SSP and Plan of Action & Milestone (POAM) document are already available.
Insights
Client Alert | less than 1 min read | 03.13.24
Crowell Talks Tax: The Inflation Reduction Act's Domestic Content Bonus Credits (VIDEO)
Client Alert | 8 min read | 03.13.24
HHS Finalizes Significant Modifications Aligning Part 2 Regulations with HIPAA
Client Alert | 1 min read | 03.12.24
Client Alert | 3 min read | 03.11.24
DOJ Offers Cash “Carrot” to Whistleblowers; Foreshadows “Stick” of More Corporate Enforcement