The Defense Federal Acquisition Regulation Supplement (DFARS)
DFARS compliance is required “as soon as practical, but no later than December 31, 2017." DFARS addresses requirements for safeguarding covered defense information controls in government contractor systems. Covered defense information is a broad term for unclassified controlled technical information or other Controlled Unclassified Information (CUI), which has protection and dissemination requirements. These mandatory controls are detailed in the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171: Protecting Controlled Unclassified Information in Non-Federal Information Systems and Organizations.
There are 109 controls in NIST SP 800-171, so many government contractors are concerned about successfully navigating the road to compliance. Our team of cybersecurity and compliance experts can help you with documenting your controls and then monitor those controls for proper design and operating effectiveness.
Contact us now so that we can help your company determine how DFARS compliance will be implemented, as all DoD contractors must meet these requirements.