Connecticut Small Businesses acting as government contractors and/or subcontractors on DoD contracts have until December 31, 2017 to comply with NIST 800-171 or risk losing their highly lucrative federal and defense contracts. This webinar will prepare IT Professionals/Administrators and cyber-security specialists through the assessment and potential solutions to secure the fourteen families of classifications for controlled, unclassified information. CT PTAC, in partnership with CONNSTEP, will offer weekly webinars on NIST 800-171 for the month of December. Starting 2018, we will offer them monthly until all suppliers are compliant. The webinars will be presented by suppliers who are skilled in assessment and implementation of NIST 800-171 compliance.
“DFARS 7012 Cyber Compliance — Are you prepared?” – is essential information for DoD contractors or subcontractors.
Any business or organization that does business with the DoD must comply with the Defense Federal Acquisition Regulation Supplement (DFARS) Clause 252.204-7012 to safeguard controlled unclassified information and report cyber incidents.
This webinar highlights the regulatory background, explaining Covered Defense Information and other topics including:
—NIST SP 800-171;
—Four phases to compliance;
—Incidence monitoring and reporting a breach;
—Consequences of non-compliance;
—Actions DoD contractors need to take now.
Our last training of the year “2017 Federal Contracting Year-End Review” with Steven Koprince will highlight major compliance changes of 2017 and things to look forward to in 2018. As a client of name of CT PTAC, you can register for this webcast at NO COST to you through our partnership with Govology. Just use the code CT7102 during registration and if you have questions, email Lisa Wood at firstname.lastname@example.org or call 860-437-4659 x 208
• Is your company a DOD contractor or sub-contractor, that must be compliant with
NIST 800-171 Cyber Security requirements by December 31, 2017?
• Do you have a 24x7x365 Managed Detection and Response (MDR) service as a part of
your Cyber Security posture to quickly detect and respond to the new and existing
threats entering your environment?
• If a Cyber Security incident was to occur in your environment, what is your “incident
response plan” and how quickly can the threat be resolved?
• How significantly would a major Cyber Security incident impact your brand-reputationequity,
operational, and financial well being?
The presentation will cover the System Security Plan (SSP) as it fits into CONNSTEP’s three-step approach for compliance with DFARS 252.204-7012. The three-step approach includes:
• The System Security Plan, a Security Assessment Report, and a Plan of Action.
• How to cover the basic content of the SSP that describes the system boundary and the operational environment
• How the security requirements are implemented
• The relationships with or connections to other systems.