Achieving DFARS Compliance
Defense contractors in the Defense Industrial Base (DIB) must meet three base DFARS compliance requirements. At a minimum, defense contractors must meet numbers 1, 2, and 3 below to be eligible for future DoD contract awards. The DoD contractor must meet numbers 1 and 2 before being considered for a CMMC Assessment under DFARS Clause 252.204-7021.
1. DFARS Clause 252.204-7012
NIST SP 800-171 Self-Assessment – 110 Security Controls – complete by 12/2017
2. DFARS Clause 252.204-7019
NIST SP 800-171 Self-Assessment [Reportable Score to Supplier Performance Risk System]
3. DFARS Clause 252.204-7021
NIST SP 800-171 Independently Assessed by an Authorized C3PAO [CMMC Certification)
In-House Expertise With SecureStrux
Equipped with in-house CMMC expertise, our assessors guide you in meeting DoD’s CUI protection requirements for non-federal systems and fulfilling DFARS compliance commitments.
Our Process
Walking you through your compliance requirements, especially meeting multiple regulatory mandates, is our specialty. Compliance is a large undertaking that takes in-depth analysis, strategic planning, implementation, and continuous monitoring. Following our three-pillar approach, SecureStrux will guide you to compliance. This will include:
Assess
Discovery and Gap Analysis
Secure
Technical and Non-technical remediation
Defend
Continuous compliance monitoring to ensure compliance is still being met
Is Your Sensitive Data Safe? The Short Answer is, No. Cybersecurity is an increasingly critical issue as the digital landscape…
Read More