Our NIST 800-171 Gap & Risk Assessment methodology will educate, inform, and guide your information security program using an industry-standard framework for securing data and systems. 0 Tolerance will assess your organization using the NIST Special Publication (SP) 800-171 families and their 110 security controls.
This framework is especially helpful if your organization currently does business with the federal government or is in the military supply chain; from nuts and bolts on plate armor, to brake pads on transport or fighter jets, to warfighter tech on the solider’s belt, to software that drives national defense and war-fighting infrastructure. Federal and military contracts are lucrative, and if you have future plans to be in those ecosystems, this should be at the top of your to-do list. These controls are showing up in other areas too. For example, for colleges that accept federal dollars, the 800-171 is a requirement for keeping those financial aid dollars flowing.
NIST 800-171 Gap & Risk Assessment Framework
We will perform the assessment using the 320 NIST SP 800-171A assessment objectives, which detail specific implementation guidelines. The 14 overall requirement families include:
- Access Control
- Awareness and Training
- Audit and Accountability
- Configuration Management
- Identification and Authentication
- Incident Response
- Maintenance
- Media Protection
- Personnel Security
- Physical Protection
- Risk Assessment
- Security Assessment
- System and Communication Protection
- System and Information Security
A valuable security assessment of your overall information security program
► Assess 14 families & 110 controls using the 320 assessment objectives
► Analyze security gaps, risks, and maturity levels
► Report of findings and recommendations
