View all the articles included in our ongoing newsletter series.
Protect Your Active Directory
As of December 31, 2017, all Defense contractors and subcontractors, independent of size, that process, store, or transmit covered defense information must demonstrate compliance with DFARS Defense Federal Acquisition Regulation, clause 252.204-7012 “Safeguarding Covered Defense Information and Cyber Incident Reporting Supplement” and NIST (National Institute of Standards and Technology) SP 800-171.
Do I need to use “multifactor authentication” for a smartphone or tablet?
Who is responsible for identifying and marking CUI/CDI?
How does the Contractor report a cyber incident?
DFARS 252.2047012 Ongoing Requirements
Due to the dynamic nature of cybersecurity threats and vulnerabilities, after achieving the initial compliance status organizations must follow specific NIST guidelines to maintain security and safeguard of their sensitive information. Organizations must address NIST SP 800171 requirements on an ongoing basis.