This assesment is for U.S. government contractors and sub-contractors and organization concerned about Cyber Security.
U.S. government contractors and sub-contractors must be compliant with DFARS. DFARS requires adherence to NIST SP 800-171 – Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations.
Any organization concerned about cybersecurity where other, more specific regulations such as PCI or HIPAA don’t apply must still follow best practices. NIST is the most generic and widely-accepted framework for cybersecurity.
The NIST-based security assessment is designed to:
Without NIST security, companies could lose their: