Significant material and reputational risks threaten contractors that have not implemented NIST SP 800-171, as the DoD memorandum states.
FedRAMP Authorization is the main prerequisite to offering cloud services to the U.S. government. Learn more about the authorization requirements.
All DoD contractors that work with CUI must perform a self-assessment for compliance with NIST SP 800-171. Learn what the assessment process entails.
Non-federal contractors that handle CUI are bound to comply with NIST SP 800-171, as the Interim Rule requires. Learn more about why NIST SP 800-171 compliance matters.