NIST 800-171 Compliance Program



This package contains editable compliance documentation that is specifically-tailored for NIST 800-171:

  • NIST 800-171 Policies
  • NIST 800-171 Standards
  • NIST 800-171 Procedures
  • System Security Plan (SSP) Template To Document Your CUI Environment
  • Plan of Action & Milestones (POA&M) Template To Document Any Control Deficiencies
  • NIST 800-171 Compliance Program – Microsoft Word document that addresses NIST 800-171 policies and standards.
  • Cybersecurity Standardized Operating Procedures (CSOP) – Microsoft Word document that contains cybersecurity procedures that correspond to the policies and standards.
  • System Security Plan (SSP) – Microsoft Word document that is a simplified version of our SSP product.
  • NIST 800-171 Cybersecurity Program Mapping – Microsoft Excel document that contains several components:
    • Plan of Action & Milestones (POA&M) template.
    • Mapping from the NCP to NIST 800-171, NIST 800-53, NIST 800-160, ISO 27002 and NIST CSF.
    • Methods to comply with NIST 800-171 (essentially a pared down NIST 800-171 Compliance Criteria (NCC) spreadsheet)
    • Roles and responsibilities (corresponds to the Cybersecurity Standardized Operating Procedures)
  • Cybersecurity Awareness Training – Microsoft PowerPoint template to provide cybersecurity awareness training.

The NCP is designed for companies that do not need or want to use the NIST 800-53 framework to manage NIST 800-171 compliance needs. This can significantly reduce complexity for companies that need to comply with NIST 800-171.