Description SOME MAJOR CHANGES TO Nist 800-171 ALL IN THIS BOOKIn June 2018, the Nist issued Nist 800-171A, "Assessing Security Requirements for Controlled Unclassified Information." It increased the challenges and some-what the complexities of current federal, and especially for the Department of Defense (DOD) efforts, to better secure the national Cybersecurity environment.
The information provides the reader with the latest information to answer the control requirements with needed specificity to meet the goal of a compliant and secure Nist 800-171 Information Technology (IT) environment..
No matter how any federal agency interprets and executes Nist 800-171 with with 171AA contractually, the information in THIS book is a significant supplement to the Nist 800-171 evolution.
The impacts of this update are currently unknown and will likely be implemented at the direction of the federal agency and contract office whether these additional sub-controls are answered in part or in total as part of a company\'s self-assessment responses to this change to Nist 800-171.
The ability to trace security requirements from their original "high-level" control to its low-level implementation allows organizations to demonstrate compliance.
These sub-controls provide added detail and granularity that bridge the gap between high-level policy expressions and low-level implementations.
They provide a standard identifier and description for each of a singular and actionable statement that comprises a general Cybersecurity control.
It added another 298 sub-controls (SUB CTRL) that may also be described as a Control Correlation Identifier (CCI).
Description SOME MAJOR CHANGES TO Nist 800-171 ALL IN THIS BOOKIn June 2018, the Nist issued Nist 800-171A, "Assessing Security Requirements for Controlled Unclassified Information." It increased the challenges and some-what the complexities of current federal, and especially for the Department of Defense (DOD) efforts, to better secure the national Cybersecurity environment
