Cybersecurity and NIST SP 800-171 Compliance
In response to cybersecurity concerns, the Defense Federal Acquisition Regulation Supplement (DFARS) states that companies doing business with the Department of Defense (DoD) have a requirement to comply with NIST SP 800-171. The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 Protecting Controlled Unclassified Information (CUI) in Nonfederal Information Systems and Organizations is explicitly designed to protect unclassified information outside the government.
Meeting this directive is not optional; it is a requirement that companies must satisfy in order to maintain existing contracts and to obtain new contracts for DoD projects. Hawk Technologies is currently compliant to the NIST SP 800-171 requirement.
The Department of Defense (DoD) has been somewhat inconsistent on cybersecurity requirements, leaving many businesses to question what they need to do and when they need to do it. Some companies along the supply chain are unsure whether they even need to be compliant. Currently, the DoD states that every contractor, regardless of where they are along the supply chain, needs to comply if they want to maintain an active contract or compete for a future contract.
At Hawk, we understand that the level of response to the requirement is key to providing businesses with a cost-effective, realistic approach toward a long-term cybersecurity solution. Hawk Technologies can deliver the guidance and the resources to assess, implement, and manage the NIST SP 800-171 requirement.