Nonfederal organizations that process, store, transmit, or provide security protection for controlled unclassified information (CUI) must adhere to NIST Special Publication (SP) 800-171 security requirements.
All government contractors must be compliant by the end of 2017. This impacts thousands of businesses. Many face the loss of their government contracts if they can’t comply. Small businesses, in particular, are struggling to understand what they must do.
What we offer: NIST SP 800-171 Assessment & Training
Our CyberSleuth™ services guide you through the fourteen (14) families of cybersecurity requirements specified for NIST compliance. We offer expert guidance, assessment tools, security awareness training, and templates to organize compliance documentation.
CUI is controlled unclassified information that meets the standards for safeguarding and dissemination controls pursuant to law, regulations, and government-wide policies under Executive Order 13556.
NIST SP 800-171 provisions apply:
(i)when CUI is resident in nonfederal information systems and organizations
(ii)when the information systems where the CUI resides are not used or operated by contractors of federal agencies or other organizations on behalf of those agencies
(iii)where there are no specific safeguarding requirements for protecting the confidentiality of CUI prescribed by the authorizing law, regulation, or government-wide policy for the CUI category or subcategory listed in the CUI Registry.
NIST SP 800-171 requirements apply to all components of nonfederal information systems and organizations that process, store, or transmit CUI, or provide security protection for such components. NIST SP 800-171 is broadly applicable to any industry where CUI is processed.
Who Needs CyberSleuth™ Training?
Information Technology (IT) specialists with system life cycle development responsibilities (e.g., program managers, business owners, system developers, security engineers, telecommunications specialists, system integrators)
Procurement and acquisition staff (e.g., contracting officers)
Security, risk management, and oversight personnel (e.g., chief information officers, chief security officers, information security professionals)
Security assessment and monitoring staff (e.g. independent analysts, auditors, system evaluators )
Identify security roles, and scope of covered data and systems
Assess staff knowledge and awareness of NIST 800-171 and organizational security requirements
Analyze staff and organizational strengths, weaknesses, opportunities, and threats to support comprehensive organizational risk assessment
Plan training curriculum and covered topics
Train staff according to scope of influence, role, responsibilities, policies and procedures
Evaluate staff and system performance against benchmarks
Document evaluation and training results
With a CyberSleuth subscription, you have instant, on-demand access to our patented Learning Management System (LMS). Our LMS provides a convenient portal to manage, organize, deliver, and document your staff assessment and training. Self-study learning resources include videos, hands-on activities, and downloads that are constantly updated to reflect recent developments and frequently asked questions. Courses cover security requirements and best practices relating to NIST 800-171 and HIPAA compliance.
There are many training options, including live webinars and classroom instruction. Courses are led by recognized industry experts. Instruction is designed to promote deeper understanding and learning through interactive engagement, hands-on activities, and system simulations.
Assessments & Certificates
After participating in CyberSleuth training courses and completing a free knowledge assessment, you can obtain a Certificate of Completion.
Need custom training for your security team? We can create personal and professional development training that will help your staff work better, smarter, and as a team. Training is available on:
NIST 800-171 Requirements
HIPAA and Health IT
Systems Development Life Cycle
Project/ Total Quality/Operations Management
Sign up here for FREE 90 minute webinar!
What Contractors Need to Know About NIST SP 800-171
This webinar is recommended for small businesses that want more information on the cybersecurity safeguards that must be in place to protect data stored on government contractor networks and information systems. The webinar provides an overview of NIST SP 800-171 and its purpose and objectives. Key terminology is explained. Each of the fourteen (14) security families covered by NIST SP 800-171 is reviewed.
TCR has a long and well proven track record. We offer expertise in information technologies, cybersecurity, online learning, risk assessment, data mining, program evaluation, artificial intelligence, operations research and industrial engineering. Our Center for Advanced Research on Emerging Technologies produces award-winning, peer-reviewed publications that explore challenges of safeguarding personal, sensitive and confidential information in the digital age.
Our free webinar can help you get started on the path to NIST 800-171 compliance. The deadline for NIST SP 800-171 is fast approaching. Space is limited in our free webinars. The time to act is NOW.
– Dr. Teresa Piliouras, CEO and founder
Want to sign up? Want more information? Contact us below!