Compliance: Complexity to Simplicity

Simplifying NIST SP 800-171 Compliance Process
Since the contracting community has grown substantially, it also has led to a series of high profile breaches. These breaches involved the exfiltration of government data from contractors who were victims of hacks or insider threats. Incident response and forensics usually find the contractor was not updating systems regularly as well as not providing annual cyber hygiene and insider threat training. Therefore, as of December 31, 2017, contractors that did work on behalf of the United States Federal Government and its multitude of agencies had to comply with NIST SP 800-171. In . . .