NIST SP 800-171 DIY Compliance

CyberDefenses - NIST DIY Program

By Damon Fleury
Chief Technical Officer

As we mentioned in a blog post last month, we’re publishing a new NIST SP 800-171 Do-It-Yourself Compliance Program that expands our popular NIST SP 800-171 compliance resources. The more robust offering is designed to help federal contractors quickly address Defense Federal Acquisition Regulation Supplement (DFARS) and FAR regulations that mandate security controls for Controlled Unclassified Information (CUI).  The Program offers the tools you need to kick-start your efforts by achieving essential compliance steps before regulatory enforcement begins at the end of December 2017.

In addition to providing a way to rapidly satisfy mandates by the December 31st deadline, the new program is designed to save organizations significant money. Priced at $1495, the program costs considerably less than hiring resources to complete the required planning and documentation.

The NIST SP 800-171 Do-It-Yourself Program provides:

  • One Seat (online or onsite) in a Two-Day instructor-led training class
    We’ll guide you through the process of performing your own NIST SP 800-171 Assessment. Our instructors are security experts who have performed NIST SP 800-171 assessments for CyberDefenses’s security clients on a regular basis. As real-world practitioners, our instructors share their experiences to help enable your success.
  • Self Assessment Templates and Worksheets
    You’ll receive the materials required to perform your own readiness assessment for the new regulations.
  • Full NIST SP 800-171 Policy Bundle
    The policy bundle provides templates for everything you need to implement the security policies required to become compliant with NIST SP 800-171.  A big part of achieving compliance (after the assessment) is implementing required written security policies. The bundle provides a scalable foundation for your organization.

Achieving full compliance requires a continued investment in infrastructure improvements. These resources provide your organization the starting point necessary to understand what is needed and begin making the changes immediately. These bundle components can also be purchased separately.

For more information about the Do-It-Yourself bundle, or for more information on having our experts perform the assessment for you, please contact us at or by visiting the page.

About the author

Damon Fleury

Damon Fleury serves as the Chief Technology Officer of CyberDefenses, Inc. He is responsible for technology selection, research and development across the range of security services offered to CDI customers. Prior to CyberDefenses, Damon spent over two decades in engineering, product management and senior leadership roles, with a heavy focus on networking and cybersecurity. In addition to his work within CyberDefenses, Damon is also very active in the cybersecurity start-up community. As a Managing Partner within Manifest, Damon helps enable the cybersecurity community to support the growth and success of Austin-based security startups.