Description:In-depth, comprehensive, professionally developed DFARS NIST 800-171 Toolkit that includes documentation (i.e., policies, procedures, programs, and plans) for all fourteen (14) security requirement families as required by NIST SP 800-171, Revision 2.
Specifications:Developed in accordance with NIST SP 800-171, Revision 2 (02-20-2020, and with updates as of 01-28-2021), and other related security control frameworks, where applicable.
What's Included: Baseline NIST 800-171, Rev. 2 Policies and Procedures
Awareness and Training
Audit and Accountability
Identification and Authentication
System and Communications Protection
System and Information Integrity
Additional Documents (Policies, Procedures, Programs, and Plans) that support the above “Baseline” policies.
Access Control Policy and Procedures - NIST SP 800-53, rev. 5
Audit and Accountability (AU) Policy and Procedures - NIST SP 800-53, rev. 5
Awareness and Training (AT) Policy and Procedures - NIST SP 800-53, rev. 5
Change Management/Change Control Policy and Procedures
Risk Management Strategy and Risk Assessment Program - DoD & Cleared Contractors
Risk Management Strategy and Risk Assessment Program - Non-DoD Contractors
Security Alerts, Advisories, and Directives Policy and Procedures
Software Usage Policy and Procedures
System and Communications Protection Policy and Procedures - NIST SP 800-53, rev. 5
System and Information Integrity Policy and Procedures - NIST SP 800-53, rev. 5
System Monitoring Policy and Procedures
Vulnerability Monitoring and Scanning Policy and Procedures
Wireless Access Policy and Procedures
Total Documents: 49
Note:The following documents, if needed, are not included in the DFARS NIST 800-171 Toolkit, and must be purchased separately: (1). System Security Plan (SSP). (2). Insider Threat Program, (2). Continuous Monitoring Program (ConMon).
Control Family Coverage: All fourteen (14) security requirement families for NIST SP 800-171, Revision 2.