The need for strong security measures to protect sensitive government data from hackers has never been more intense. To address this problem, the Department of Commerce National Institute of Standards and Technology has released NIST Special Publication 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations. If you are a contractor to governmental agencies, SP800-171 impacts you. The orginal implementation deadline was December 31, 2017. Implementing the correct security and data protection processes, and deploying security technologies such as Authentication, Privileged Access Management and others has become increasingly complex. Axiad IDS can help manage the complexity of this mandate for you so you can continue to do business with the Government. Our ability to provide a comprehensive solution across different populations within the enterprise ensures organizations realize significant operational cost savings, a simplified user experience for both employees and customers, as well as greatly improved security and compliance.
We invite you to contact firstname.lastname@example.org to discuss how we can help you comply quickly.
PROTECTING CONTROLLED UNCLASSIFIED INFORMATION
NIST SP800-171 is a complicated directive. This backgrounder document will break it down for you by outlining the timeline, describing the Executive Order and help you make sense of the DoD DFAR Clause and NARA released FAR clause. We will help you understand who this mandate affects and go into detail on the Security Families outlined in the publication.
NIST SPECIAL PUBLICATION: THE COMPLETE SOURCE DOCUMENT BY NIST
Did you know the Special Publication document produced by National Institute of Standards and Technology NIST is nearly 80 pages long? The document covers the NIST framework for Improving Critical Infrastructure, details on each of the 14 security requirements, mapping tables and a special section dedicated to acronyms.
NASA CIO REFUSED TO RENEW A CONTRACT UNTIL COMPLIANCE WAS MET
NASA CIO Renee Wynn refused to sign a contract with Hewlett Packard (HPE) due to security issues at HPE. If she renewed the contract, the security risks would remain, and HPE would not be forced to make them a priority. That was not acceptable to Wynn. She needed to send HPE a message, and she likely considered NIST SP 800-53, and more recently NIST SP800-171 mandates that require government contractors meet specific security requirements. HPE took the steps to address the security issues.
AXIAD ID CLOUD SOLUTION
NIST SP800-171 is complex. Organizations need quick compliance. As a fully hosted-service, Axiad ID Cloud is easy to deploy, reduces risk, lowers upfront investment, can be operational in a few days, and is highly secure. By removing the need to be IT security experts, organizations are freed to focus on their core business and remove the risk of losing government contracts.
AXIAD ID CLOUD DATASHEET
The Axiad ID Cloud platform enables a portfolio of products that help organizations quickly and cost- effectively implement and manage a mix of user and device credentials covering a range of assurance and authentication levels to meet their unique needs and budgetary requirements. With products ranging from Trusted User Certificate-Based Identity, Trusted User Flexible Authentication and Trusted Infrastructure, Axiad ID Cloud offers a truly secure, integrated and simplified solution to leverage your digital assets and protect your entire ecosystem - from employees and contractors to data, devices and infrastructure. The result is better protection, simpler deployment, less complexity and lower upfront investment.
LEARN HOW AXIAD ID CLOUD ENABLES QUICK COMPLIANCE WITH SP800-171
Government mandates create additional complexity in the implementation and management of security solutions. In the case of NIST SP800-171, Axiad IDS’ expertise enables government contractors quickly and easily respond to the mandate. Powered by proven products from Axiad IDS’ market leading partners, the Axiad ID Cloud is designed to make it easier to cost-effectively deploy and manage comprehensive solutions while lowering risk and overall investment costs.
AXIAD IDS BLOG: THE LOOMING DEADLINE TO COMPLY WITH NIST SP800-171
In this role, I’ve observed an interesting (and worrisome) trend. No longer do attackers exclusively target the business operations of corporations. In 2017 we increasingly witnessed and felt the impact of cyber attacks on consumers. Why is it important to be aware of these risks? Well there are a couple of reasons. One, knowing the increased risk as consumers, we need to demand that the organizations we give our business take the precautionary measures required to protect our personal data....
FEATURED IN NOVEMBER 2016 SECUREWORLD DIGITAL PUBLICATION
In December of 2017, the National Institute of Standards and Technology (NIST) Special Publications (SP) 800-171 will come into effect. What challenges will companies face in establishing compliance with NIST SP800-171 for their own companies? Bassam Al-Khalidi shares his thoughts on this major security mandate and potential roadblocks coming ahead.
SPEAKING PRESENTATION ON NIST SP800-171 AT DATA CONNECTORS SECURITY CONFERENCE
Presented at August 10, 2017 Data Connector Event: Counting Down: How to Quickly, Easily and Cost-Effectively Comply with NIST SP 800-171. Presented by Gurpreet Manes, VP, Technology . Take a peek at what was presented to a group of contractors affected by SP800-171.
EBOOK: SAFEGUARD UNCLASSIFIED INFORMATION BY DECEMBER 2017 OR RISK YOUR FEDERAL CONTRACTS
NIST SP800-171 requirements demand rigorous access control. Non-compliance presents serious consequences for contractors, including legal action by the government and termination as a contractor. This eBook focuses on some of the most complicated parts of the mandate – and how multi-factor authentication (MFA) and Privileged Access Management (PAM) offer a comprehensive but cost-effective path to complying with these aspects of NIST SP800-171.