What is DFARS and NIST, and why do I need to be compliant?
Businesses contracted or subcontracted with the U.S. Department of Defense (DoD) and handle CUI (Controlled Unclassified Information) are required to meet parameters of the Defense Federal Acquisition Regulation Supplement (DFARS). This is a government regulation that applies to any business with a contract with the Department of Defense (DOD).
DFARS necessitates compliance with the security requirements outlined in the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations.”
Businesses that are non-compliant with DFARS and NIST SP 800-171 risk losing existing DoD contracts as a result. In addition, new contracts are not being issued to businesses that are not compliant, leading to large financial losses.
The Leverage IT Advantage…
Leverage IT developed our DFARS, NIST and ITAR compliance process out of necessity. We help our large base of manufacturing clients achieve and maintain DFARS and NIST compliance. Our security experts routinely help DOD subcontractors meet requirements from Raytheon and Lockheed Martin.
Our Compliance Service Includes:
- DFARS, NIST & ITAR Compliance
- Level 1-3 Security Controls
- External Vulnerability Scanning
- Monthly Cyber-security Reporting
- 24-7 Network Monitoring
- Help Maintaining Compliance