Controlled Unclassified Information (CUI) is at risk and the US Government is getting serious about protecting it. All contractors and sub-contractors that are in the business of providing goods and services to the government need to get serious too. Starting with Executive Order 13556 in 2010 and emphasized with the 2014 Federal Information Security Modernization Act (FISMA Reform) the government recognized problems in the supply chain that place Controlled Unclassified Information (CUI) at risk.
NIST Special Publication 800-171 r1 (December 2016) addresses these risks with 14 information security families and 110 information security controls that draw heavily from NIST 800-53. The Federal Acquisition Regulation (FAR) and the Defense Federal Acquisition Regulation Supplement (DFARS) now imbed mandatory information security requirements directly into contracts with critical compliance dates as early as December 2017.
Join CyberDefenses to review these new federal requirements, discuss approaches to completing the initial assessment, address requirements and achieve compliance. Includes hands-on exercises on how to do the assessment, as well as providing students with needed templates for the required Plan of Actions & Milestones (POA&M) and the Self Attestation Documents.
Purchased alone, this course does not provide you with the full Policy Bundle that is necessary to begin implementation, after you take this class. Click here to include the Written Information Security Program Policy Bundle in your purchase.