Helping Small Businesses meet NIST 800-171 compliance in minimum time.
DoD now requires all contractors – no matter how small the company or the industry – to certify compliance with NIST 800-171, ensuring protection of Controlled Unclassified Information (CUI) (Ref: DFARS 252.204-7012 and 6 Nov 18 Under Secretary of Defense for Acquisition and Sustainment memo).
But this is a big task! Combing through the relevant publications alone is daunting! The government estimates it will take 110 hours of effort to reach compliance. Many companies that have tried to “go it alone”, however, have reported estimates of over 200 hours and not even reached 50% compliance. One company estimated that the chance of achieving compliance without some type of outside help was near-zero.
What if you could chop that time required down to 30 hours and achieve 100% compliance without spending an exorbitant amount of money? You can for as low as $5000!
We’ve partnered with ACR2 Solutions to provide you templates for all the required policies, the System Security Plan (SSP), and the Plan of Action and Milestones (POA&M), along with special “boot camps” that walk you through how to fill out those templates, complete with examples for each policy. NIST 800-171-required employee annual cyber awareness training is also provided for a small additional fee. Finally, if your company needs any additional hardware or software – such as a Unified Threat Management appliance, network scanning tool, or secure e-mail or collaboration suite – our professional staff will procure and install it for you.
For more information, check out the video below, or contact us at CUIComplianceSolutions@gopci.com.