Federal contractors with the Department of Defense (DoD), General Services Administration (GSA), or NASA must comply with DFARS cybersecurity protocols under NIST 800-171. The standard, effective as of Dec. 31, 2017, was developed by the National Institute of Standards and Technology (NIST) Special Publication 800-171, titled Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations.
The Texas Manufacturing Assistance Center (TMAC) South Central Region, a program managed by Southwest Research Institute, is offering a comprehensive package of services to meet DFARS cybersecurity requirements with a special assistance program, funded by the DoD, that makes DFARS 252.204-702 compliance more accessible to small- and medium-sized companies based in South and Central Texas.
NIST SP 800-171 Assistance
TMAC is providing the following federal contractor cybersecurity services to help small- and medium-sized companies comply with NIST SP 800-171:
- Formal Gap Assessment
- Plan of Action
- Site and Systems Security Plan
This program helps you identify your assets, protect your assets, recover normal operations, detect incidents and respond to cybersecurity attacks with a formal plan.
DFARS 252.204-702 Compliance & Remediation
TMAC cybersecurity program participants will get comprehensive training with documentation that shows compliance. Certain federal contracts must comply with the DFARS 252.204-702 clause Safeguarding and Technology’s Special Publications 800-171, or NIST SP 800-171.
What is NIST SP 800-171 and who must comply?
In 2010 the National Institute of Standards and Technology (NIST) was tasked with developing the guidelines for use in federal agencies. This NIST cybersecurity framework eventually became NIST Special Publication 800-171 which was finalized in 2015. For those who are Department of Defense (DoD), General Services Administration (GSA) or NASA contractors, compliance with NIST SP 800-171 became a requirement as of Dec. 31, 2017. For those of you who supply materials to any manufacturer who is required to comply you can expect to see those requirements flow down through the supply chain. Since the DOD has begun to assess contractor compliance with NIST SP800-171 during the contract award process, compliance is a must to win work. The solicitation must include self-attestation of compliance with DFARS 252.204-7012 and implementation of NIST SP 800-171.
The Texas Manufacturing Assistance Center (TMAC) delivers training and hands-on technical assistance to businesses in the state of Texas. The Process Improvement Engineering Section at Southwest Research Institute (SwRI) in San Antonio, Texas, serves as the state’s South Central field office. TMAC's mission is to increase the global competitiveness of the Texas economy by working with the extended manufacturing enterprise.