DFARS 252.204-7012 has been constantly evolving since 2013. Last year, a final rule revised the CDI definition and relied on the National Institute of Standards and Technology to establish adequate security controls. This rule upheld the 2015 interim rules requiring the implementation of 800-171 controls as soon as practical, but no later than December 31, 2017. While the changing nature of these rules has created some confusion for government contractors in managing all of the requirements appropriately, they must avoid procrastination and build a roadmap for the rest of 2017 to prudently align their practices with NIST SP 800-171. Aronson can assist you with understanding the final ruling requirements to facilitate 800-171 compliance by the deadline.
Do you have more questions? Download our DFARS Compliance Overview presentation to learn the answers to the most commonly asked questions such as:
Our team has extensive experience with NIST standards (800-53 & 800-171) and is equipped with multiple accelerators that significantly reduce the time it takes to achieve DFARS compliance. From readiness assessments to compliance reports, Aronson provides a total solution for your DFARS and cybersecurity related compliance needs.
Prefer real-time conversations? We do too. Call Payal Vadhani, lead partner of Aronson's Technology Risk Service Group, at 301.231.6259.