The National Institute of Standards and Technology (NIST) publishes core standards for security of Controlled Unclassified Information
Are you or planning to become a federal contractor? The NIST 800-171 is a framework of requirements that any non-federal computer system must follow to store, process, or transmit Controlled Unclassified Information (CUI) or provide security protection for such systems. You can use ReadyCert perform your assessment and log and track Plan of Action and Milestones (POA&M). When you are ready you can simply press the print button for your System Performance Risk System (SPRS) and System Security Plan (SSP) deliverables.