There is more and more information out there about security recommendations and it can be challenging to know who and when to listen. I have a had a few partners of ours ask where we get our standards and recommendations from. Well it’s time to share our leader….. The National Institute of Standards and Technology (NIST). NIST was founded in 1901 and is part of the US Department of Commerce. You can access their website here: National Institute of Standards and Technology | NIST.
NIST publishes standards that often affect our partners and we need to be up on the latest of those standards, specifically the 800 series of standards. For example, a recent standard that has started to gather a lot of attention is NIST 800-171 that focuses on safeguarding sensitive information on federal contractors’ IT systems and networks. Even though the standard is written for federal government contractors, we have started to see other industries adopt pieces of the standard.
Are you interested in seeing where you rank against the NIST standards? Reach out to us and we can plan a project to perform a security assessment on your organization to see where you currently rank against the standards. We perform a level 1 audit and give you a roadmap that highlights the gaps and how to remediate the gaps over a period of time.
As always, feel free to reach out with any questions you may have!