Step 1. Choose your NIST 800-171 Assessment

The National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 provides federal agencies with a set of recommended security requirements for protecting the confidentiality of Controlled Unclassified Information (CUI). These requirements are relevant when such information is resident in non-federal systems and organizations; when the non-federal organization is not collecting or maintaining information on behalf of a federal agency or using or operating a system on behalf of an agency; and where there are no specific safeguarding requirements for protecting the confidentiality of CUI prescribed by the authorizing law, regulation, or government-wide policy for the CUI category or subcategory listed in the CUI Registry. The requirements are intended for use by federal agencies in contractual vehicles or other agreements established between those agencies and non-federal organizations.

NIST 800-171 Assessment

NIST SP 800-171 is a codification of the requirements that any non-Federal computer system must follow in order to store, process, or transmit Controlled Unclassified Information (CUI) or provide security protection for such systems.

NIST 800-171 catalog was developed and published by the National Institute of Standards and Technology (NIST) as part of its Special Publication “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations”.

Step 2. Edit / Answer / Share the Assessment

Disclaimer: the assessments are provided by Vendict “as is” for information purposes only. Any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. While we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the inserted assessment contained herein. Any reliance you place on such information is therefore strictly at your own risk.