Compliance Services

NIST SP 800-171 Services

NIST SP 800-171 Assessment Services

The National Institute of Standards and Technology (NIST) has prescribed several methodologies for an organization to assess, evaluate, and mitigate their overall risk related to Information Security. Today, more than at any time in history, the federal government is relying on external service providers to help carry out a wide range of federal missions and business functions. By December 31, 2017, all contractors and subcontractors must demonstrate appropriate physical and logical safeguards related to the unclassified controlled information they possess by having an IT Security Risk Assessment to the NIST SP 800-171 requirements. The key areas evaluated in this type of an assessment include: 

NIST 800 171 Control Areas V 2.png

Compass IT Compliance Services

  • NIST SP 800-171 Risk Assessment - Assess your current level of compliance with NIST SP 800-171, identify gaps in controls, and identify key work areas that your organization must address to achieve and/or maintain compliance with the framework
  • NIST SP 800-171 Audit - Our experienced, certified IT Auditors will examine your IT controls mapped against NIST SP 800-171 requirements, obtain evidence to determine if the controls are operating effectively to achieve your organization's objectives and satisfy framework requirements, and provide attestation of audit along with remediation strategies. A deeper dive assessment compared to the NIST SP 800-171 Risk Assessment, the NIST SP 800-171 Audit will include evidence sampling
  • NIST SP 800-171 Advisory Services - Work with your organization and tailor our project to your specific needs to address any concerns that you have related to NIST SP 800-171, assist in the implementation and updating of policies and procedures, or assist in assessing the risk your third party providers pose related to NIST SP 800-171

Whether you are trying to secure your organization's key systems as a best practice or you are a contractor / subcontractor for the federal government, Compass IT Compliance will assist your organization by completing the NIST SP 800-171 services you need. Contact us today to learn more!

NIST Blog Posts

Contact Us