This package contains editable compliance documentation that is specifically-tailored for NIST 800-171:
- NIST 800-171 Policies
- NIST 800-171 Standards
- NIST 800-171 Procedures
- System Security Plan (SSP) Template To Document Your CUI Environment
- Plan of Action & Milestones (POA&M) Template To Document Any Control Deficiencies
- NIST 800-171 Compliance Program – Microsoft Word document that addresses NIST 800-171 policies and standards.
- Cybersecurity Standardized Operating Procedures (CSOP) – Microsoft Word document that contains cybersecurity procedures that correspond to the policies and standards.
- System Security Plan (SSP) – Microsoft Word document that is a simplified version of our SSP product.
- NIST 800-171 Cybersecurity Program Mapping – Microsoft Excel document that contains several components:
- Plan of Action & Milestones (POA&M) template.
- Mapping from the NCP to NIST 800-171, NIST 800-53, NIST 800-160, ISO 27002 and NIST CSF.
- Methods to comply with NIST 800-171 (essentially a pared down NIST 800-171 Compliance Criteria (NCC) spreadsheet)
- Roles and responsibilities (corresponds to the Cybersecurity Standardized Operating Procedures)
- Cybersecurity Awareness Training – Microsoft PowerPoint template to provide cybersecurity awareness training.
The NCP is designed for companies that do not need or want to use the NIST 800-53 framework to manage NIST 800-171 compliance needs. This can significantly reduce complexity for companies that need to comply with NIST 800-171.