DFARS / NIST 800-171 Compliant
Preventing the loss of sensitive information is one of the biggest challenges facing organizations in their day-to-day operations. Data loss prevention techniques are vital for establishing secure protocols.
It is not surprising that the National Institute of Standards and Technology (NIST) in their last special publication--NIST 800-171--devoted much of its attention to methods on data loss prevention, both from a technical, as well as best practices perspective.
Setting a High Bar
The standards of NIST 800-171 are high.
The document recommends several layers of protective measures for both the transfer and storage of data on company systems and devices.
NIST focuses heavily on access protocols, especially regarding controlled unclassified information, or CUI. The document urges that companies track and control any transfer, anywhere in the company network, of data falling into predetermined categories. Also to be logged are any changes to information systems utilized by a company. Privacy and security notifications must be activated for when such transfers and changes are made.
Encryption standards of NIST are also pretty heavy. The Institute essentially tells companies to encrypt the storage and transfer of any data with substantial sensitivity levels including passwords. NIST also recommends full blanket encryption be implemented for all CUI on certain devices.
Complying with the high standards of NIST comes with operational costs.
First off, while some of the blanket strategies recommended such as total encryption may add to an organization's data security, the functional burden to a company implementing such methods are often overwhelming.
Additionally, classification systems often lack an intelligent approach to address the subtle differences between various pieces of data. The environment in which data and sensitive information is moving is also not black and white. It is impossible for a system based on preset protocols to distinguish between relevant recipients and users.
The Data Loss Prevention solution of GTB addresses all of these challenges, allowing a firm to achieve the highest levels of data security on par with NIST standards, while not impeding flow of operations.
Using smart AI functions, GTB's programs constantly monitor transfers and use to ensure that users are made aware of the security risks associated with their activities.
On the encryption end, GTB DLP’s Crypt-n-Chive solution automatically activates encryption protocols for sensitive data based on intelligent algorithms, insuring encryption is limited to appropriate information only.
Additionally, GTB’s DLP system gives administrators total control over the flow of controlled CUI, allowing them to implement protocols manually based on specific company needs.
As a Federal contractor, do you meet NIST SP 800-171 compliance? Contact us for a NIST CUI Assessment