Final Draft of NIST SP 800-171A Gives Contractors Something to Sample
Client Alert | 1 min read | 03.01.18
Last week, the National Institute of Standards and Technology (NIST) released its Final Draft of NIST Special Publication (SP) 800-171A, which will again be open for comment through March 23, 2018. First proposed in November, the publication provides guidance to both contractors and agencies regarding how to conduct assessments under the prominent cybersecurity standard NIST SP 800-171, which lays the foundation for how contractors must protect all forms of Controlled Unclassified Information, including Covered Defense Information. The Final Draft may be most notable for what it references but does not actually include: In response to initial comments requesting sample system security plan (SSP) templates, the Final Draft explains that NIST will post sample templates to its Computer Security Resource Center. Not wasting any time, sample templates of both a SSP and Plan of Action & Milestone (POAM) document are already available.
Contacts
Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 3 min read | 02.13.26
In October 2024, the FTC adopted a final rule that substantially modified the HSR form, requiring new categories of information and documents. The final rule was the most significant overhaul of the HSR premerger notification requirements in decades. The new requirements imposed additional time and expense on merging parties, with the FTC estimating that the new form would likely take triple the amount of time to complete than the previous form. Numerous groups, including the U.S. Chamber of Commerce, sued to challenge the rule.
Client Alert | 12 min read | 02.13.26
What Organ Procurement Organizations Need to Know About CMS's New Proposed Rule
Client Alert | 9 min read | 02.12.26
Client Alert | 3 min read | 02.12.26
