Search Results for: NIST

An Analyst Perspective: Sera-Brynn’s Report on NIST 800-171. Is Compliance Achievable?

Sera-Brynn’s report, “Reality Check: Defense Industry’s Implementation of NIST SP 800-171. Keen insights from certified cybersecurity assessors,” was published in May 2019. If you didn’t have time to read it, it tells the story of an industry struggling to fully comply with the controls of NIST 800-171, which are required to protect sensitive Government data…. Read more »

Press Release: Report on Defense Industry Implementation of NIST 800-171 Security Controls

Sera-Brynn releases “Reality Check: Defense Industry Implementation of NIST SP 800-171” – a get-real analysis of its cybersecurity assessments in the defense industry.  The report provides the insights, charts, graphs, and statistics that tell the story of an industry struggling with compliance.  FOR IMMEDIATE RELEASE:  May 15, 2019, SUFFOLK, VA.  Today, the certified cybersecurity assessment… Read more »

Live Webinar: Impacts of New NIST 800-171 (Revision 2) on Government Contractors

        Heather Engel, Chief Strategy Officer of Sera-Brynn, will join Scott Edwards, Summit 7 Systems President, to discuss the highly-anticipated revision to NIST SP 800-171. NIST 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, was first published in December 2016 (and updated in June 2018).  Under Defense Federal Acquisition Regulation… Read more »

Privacy Framework: NIST is in the House.

This month, NIST kicked off a series of public meetings to highlight its efforts to create a voluntary Privacy Framework. Much in the same way it developed the Cybersecurity Framework, NIST is trying to achieve a technology-privacy balance within the guidance by crowdsourcing its way there.  By bringing in views from federal agencies, small businesses,… Read more »

Live Webinar NIST 800-171 Compliance Higher Education / Research Institutions

Thursday, May 10, 2018 2 – 3pm EST Register here Heather Engel, Sera-Brynn’s Chief Strategy Officer will discuss the challenges colleges and universities face as they attempt to secure their cyber infrastructure to comply with new federal regulations as a condition of receiving research grants. Sera-Brynn is a top 10 global cybersecurity compliance firm. “Most… Read more »

Sera-Brynn to present on NIST SP 800-171 Regulatory Requirements in Blacksburg, VA

Sera-Brynn’s Chief Strategy Officer, Heather Engel, will present a two-hour workshop on Strategic Planning for Cyber Risk: Protecting Data and Meeting Regulatory Requirements with NIST SP 800-171 on March 27, 2018 from 2:00pm to 4:00pm. Sponsored by the Virginia Tech Corporate Research Center, this session will discuss what these requirements may mean for your organization,… Read more »

Top 10 Mistakes in Implementing the NIST 800-171 Cybersecurity Requirements

Businesses supporting the U.S. Department of Defense work have 10 weeks left to fully comply with the cybersecurity provisions of the Defense Federal Acquisition Regulation Supplement (DFARS) clause 252.204-7012 and associated clauses. At Sera-Brynn, we’ve been advising clients on the DFARS and NIST requirements since 2014, and we’ve seen mistakes from companies of all sizes… Read more »

NIST Password Guidelines Change

By Colin Glover, Sera-Brynn Sr. Cybersecurity Analyst The National Institute of Standards and Technology (NIST) recently updated their Digital Identity Guidelines, releasing NIST SP 800-63-3. This four-volume set, 800-63-3, 800-63A, 800-63B, and 800-63C, provide technical requirements for federal agencies implementing digital identity services. Of most importance to the DoD requirement for the protection of Covered… Read more »

Achieving NIST 800-171 Compliance: Steps You Can Take

Now that April is here, we are nine months away from NIST 800-171 compliance for defense contractors. As the deadline approaches, it will become more difficult to implement the controls in a cost-effective way that actually offsets risk. If your organization hasn’t already started, further delays will impact your ability to think carefully about what… Read more »

NIST 800-171 vs NIST 800-53: Big Differences

By Heather Engel, EVP Risk Management When evaluating your compliance with Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 and related clauses, or Federal Acquisition Regulations (FAR) Ruling 52.204-21, it’s important to understand the differences between the various National Institute of Standards and Technology (NIST) publications (https://www.nist.gov/publications). We’ll try to simplify it as much as possible,… Read more »