by David Trout

When working in the federal IT space, next to proactive security, compliance is everything. Thousands of pages of requirements exist between the Federal Acquisition Regulation (FAR) and its companion for defense contractors, the Defense Federal Acquisition Regulation Supplement (DFARS). For cybersecurity contractors, the especially important subset of regulations are housed under the National Institute for Standards and Technology (NIST) Special Publication 800-171 Rev. 2 “Protecting Controlled Unclassified Information (CUI) in Non-Federal Information Systems and Organizations.”

Most recently,  to help deal with what are considered “advanced persistent threats” from advanced adversaries, NIST has created 800-171 Rev. 2 (SP 800-171B), which offers 32 recommended enhanced security requirements. 800-171 Rev. 2 addresses CUI that support critical programs or that form part of a high value asset and requires some contractors to enhance security to defend against actors that target infrastructure to steal information or undermine critical aspects of its mission, sometimes years after the initial breach.





Why Rizkly is Best for 800-171 Rev. 1 and 800-171 Rev. 2 Success 

Rizkly provides a simpler path to NIST 800-171 compliance. With a secure cloud-based service for managing compliance tasks AND expert advisory to keep you on the right track (the fast one….to 800-171 success), Rizkly’s Guided Security & Compliance (GSC) approach helps government contractors achieve and maintain NIST 800-171 compliance in less time and with lower costs than traditional consulting solutions:

  • Integrated third-party NIST 800-171 audit expertise and knowledge reduces the compliance learning curve
  • Templates and documents that you complete by answering simple questions
  • Dashboards and alerts for managing technical and administrative tasks
  • Secure cloud-based document repository for organizing, sharing, and managing access to project documents: System Security Plan (SSP), Incident Response Plan (IRP), Policies & Procedures, Project of Actions & Milestones (POA&M)


Struggling to get your 800-171 initiative off the launch pad?  Small and mid-size civilian and defense contractors think Rizkly is the best compliance solution for their 800-171 achievement.  We’d love to tell you more and learn more about your situation.  Please contact us.  We will pick up the phone and call you.