home_banner `

Content Icon

Ensure Suppliers Know How to Comply With NIST 800-171

October 9, 2019 | Ask-An-Expert Writeups | Enterprise and IT Compliance Management | By Bryson Bort, IANS Faculty

All companies supporting the U.S. government must meet the cybersecurity requirements listed in NIST 800-171. In this Ask-an-Expert written response, IANS Faculty Bryson Bort says the best place to start is with strong configuration and change management.
IANS

 SUBSCRIPTION REQUIRED


Already a client?

Log In to Continue

Not a client?

Request More Information

Related Research

Ensure Employees Take Credit Card Numbers Over the Phone Securely

When customers can't use the normal web process to input credit card information, they often turn to customer service reps for assistance. But how can agents help without increasing the organization's PCI scope? In this Ask-an-Expert written response, IANS Faculty Adrian Sanabria offers some practical recommendations.

Data Governance 101: Put the Basics in Place

Creating a data governance program requires long-term thinking; it's a practice, not a project. In this Ask-an-Expert written response, IANS Faculty Josh More lists the key steps for building a successful program.

Understand HIPAA’s Data-at-Rest Encryption Requirement

HIPAA has an addressable requirement for encrypting data at rest, but how are organizations expected to comply? In this Ask-an-Expert written response, IANS Faculty Mike Pinch say HIPAA doesn't provide detailed guidance but the best strategy is to match your encryption to the attacks it's designed to prevent.