NIST CONTROL REQUIREMENTS SEEM VAGUE?
By David Trout NIST 800-171 security controls are purposely designed to be broad, so that individual contractors can adapt them to their operations. While this non-specific approach supports a [...]
WHAT DO I DO IF I HAVE IDENTIFIED 800-171 GAPS?
By Chor-Ching Fan Finding areas where your security controls are lacking does not mean NIST 800-171 compliance is out of reach. If you are unable to meet all NIST [...]
BOUNDARY SMOUNDARY…JUST TELL ME WHERE IT IS!
By David Trout With today’s integrated information systems it can be a challenge to understand where one system ends and another begins. Getting the system boundary right can make [...]
NIST 800-171 COMPLIANCE…ARE WE THERE YET?
By Chor-Ching Fan The adage “your greatest strength is also your worst weakness” applies to compliance frameworks too. NIST 800-171 requirements were designed to be flexible, which turns out [...]