NIST SP800-171 SPRS
What is this?
As a part of the DoD Interim Rule in November 2020, DFARS 7019 and 7020 where added requiring the DIB supply chain to assess their organizations following the NIST 800-171 guide and to post a score to the Supplier Performance Risk System (SPRS).
NIST 800-171 contains 110 controls which are also the basis for the Cybersecurity Maturity Model Certification (CMMC). One of the first steps of this process is to identify the Who, What, When, Where, Why and How of your system.
How can CISEVE help you?
We can provide you with a WYST (Where You Stand Today) independent evaluation of your system. This is not an in-depth test of all your systems exercise. We will review with you, your documentation, processes and systems. We will provide feedback on each control and provide you the score to be uploaded into SPRS.