In a world where information security threats are constantly looming, it is important for companies – and required for manufacturers with Department of Defense contracts – to ensure they are protected and compliant. With the December 31, 2017 deadline for U.S Department of Defense’s cybersecurity compliance behind us, government contractors are required to demonstrate compliance in order to keep their contracts and gain new ones in 2018.
“Manufacturers have a variety of tools available to help pursue comprehensive organizational security, starting with cybersecurity. The first step is to determine one’s existing cybersecurity protections and tools and identify easy gaps to fill. Taking protective steps can decrease the time and resources spent on a security breach.” - John Remsey, Senior Technical Specialist (IMEC)
The Importance of Cybersecurity Compliance
Failing to meet the requirements set in place by the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, can result in loss of government contracts and increased liability for the organization. The requirements are meant to ensure the confidentiality of Controlled Unclassified Information (CUI) in Department of Defense contractors and their supply chains. Take, for example, Atlas Tool & Die; it was determined that they were only 40% complaint with the NIST SP 800-171 requirement. They took the necessary actions to become 100% compliant and are now fully protected against intrusions and no longer face the risk of losing their DoD contracts!
“The cybersecurity requirements are all about protecting the data, not letting intrusions in, and notifying the appropriate people when things happen. As a small business, we often create workarounds to simplify our work and with administrative practices in particular. But with the DFARS compliance, that is unacceptable and we now understand how essential that is for our company’s security.” - Zach Mottl, Chief Alignment Officer (Atlas Tool and Die Works)
To help DoD contractors – whether a prime contractor or subrecipient – become compliant in 2018, IMEC is partnering with the Illinois Defense Network and local partners to offer 3 multi-day Defense Federal Acquisition Regulation Supplement (DFARS) workshops. These 2 day workshops will focus on the new DFARS guidelines, important compliance deadlines, consequences for not complying, mitigation and next step remediation for non-compliance and ways to fast-track your cybersecurity efforts.
Register for the Upcoming DFARS Workshops!
DFARS Cybersecurity for Defense Communities 2-Day Workshop
June 7-8, 2018
DFARS Training for Defense Manufacturers 2-Day Workshop
June 19-20, 2018
DFARS Training and Assessment: Cybersecurity and Beyond
June 21-22, 2018
For more information on protecting your organization through cybersecurity, check out these other great articles...