NIST 800-171 Compliance
Exclusively for Small Businesses
What is NIST 800-171?
NIST 800-171 is a cybersecurity standard set by the Department of Defense in the DFARS 7012 regulation for aerospace and defense contractors. DFARS 7012 is in almost every aerospace and defense contract. More recently vendors are removed from supply chains and losing business if they are found to not be compliant. DFARS 7012 has 3 requirements:
1
Requirement 1
Hit a minimum level of cybersecurity by implementing the 110 cybersecurity controls in NIST SP 800-171.
2
Requirement 2
Report Cyber Incidents to the DoD. Have the capability to isolate images and logs of information systems for 90 days.
3
Requirement 3
Notify and ensure that your subcontractors that they need to be DFARS 7012 compliant in order to do defense work.
Why Does NIST 800-171 Compliance Matter?
Score Submission
All prime and subcontractors must submit their NIST 800-171 cybersecurity score to the Department of Defense and prime contractor as part of new contracts.
Compliance Audits
Prime Contractors now conduct cybersecurity audits to verify NIST 800-171 compliance as part of supplier quality audits.
New Work
Prime Contractors and the military are no longer sending new work to contractors who are not compliant with NIST 800-171.
What Do I Need To Prove NIST 800-171 Compliance?
1
Hit Minimum Level of Cybersecurity
Implement the 110 cybersecurity controls in NIST 800-171.
2
Generate a System Security Plan
A System Security Plan is a 300-400 page document showing how your company complies with each of the 110 controls in the NIST 800-171. This document is sent to your military customer and/or prime contractor to prove compliance
3
Submit Cybersecurity Score
Your cybersecurity score is sent to the military and or prime contractor. This score is used to gauge your risk as a supplier and influences whether or not you will win work in the future.
What is Atomus?
Atomus builds cybersecurity and compliance exclusively for small and medium size Aerospace and Defense contractors. We’ve built proprietary, industry leading software that automates the cybersecurity and compliance process for our customers.
Atomus bundles the dozens of different services that are needed to comply with NIST 800-171 and deploys, integrates, and manages them in a compliant way for businesses exclusively in the Aerospace and Defense Industrial Base.
Atomus comes standard with the following pre-configured software and services for DFARS 7012 compliance that are managed by Atomus for small businesses:
Backup and Recovery
Device Management
Antivirus
Endpoint Detection and Response
Update and Patch Management
Azure Active Directory (Identity Management)
Hardware and Software Inventory
Multifactor Authentication
Instead of a small business owner or IT Manager custom searching, vetting, configuring, and managing all these services Atomus has built a best in class solution for Aerospace and Defense companies specifically for DFARS 7012 compliance. Becuase we manage these services, we have built autogenerated documentation for our service to support NIST 800-171, DFARS 7012, and CMMC documentation requirements. For a more comprehensive list of what Atomus provides please book a demo.
Why Atomus Is #1 For Small Businesses
Fast Implementation
Affordable Pricing
Autogenerated Documentation
Expert Compliance
World Class Cybersecurity
Same User Experience. World Class Cybersecurity and Compliance
“We were told that the user experience would feel exactly the same as what we were doing prior to Atomus. And it's been exactly that.”
How Does Atomus Work?
1
Download Software
Our software configures your existing computers and servers to the NIST SP 800-171 standard needed for DFARS 7012 compliance.
Compatible with Windows, Mac, and Linux servers and endpoints.
2
Online Cybersecurity Training
This 1 hour training is made specific for aerospace and defense contractors and generates a proof of training certificate.
3
Tailor Policies and Procedures
Adopt and tailor our templated cybersecurity policies and procedures to your business. Policies include a Company Information Systems Policy, a Company Media Sanitization Policy, and so much more.
4
Prove Compliance
Autogenerate 400+ pages to show your customers how you are compliant with the DFARS 7012 standard. Our product is backed by our Atomus guarantee to ensure our product passes your cybersecurity audit.
Our Customers Love Us!
Start Your NIST 800-171 Compliance with Atomus Today!
Role Based Access Control
Virtual Private Network (VPN) Server and Clients
Logging and Audit Capabilitites
Firewalls
Email Security
Security Information and Event Management (SIEM)
Cybersecurity Servcies (i.e. Threat Hunting)
Comply with NIST 800-171
Made Compliance Easy
Atomus made the DFARS 7012 compliance process painless for us. Today our entire company and subcontractors use Atomus in order to keep company and military data safe and compliant. I highly recommend them.
Norris Tie,
CEO of Exosonic Aerospace
Radically Improved Our Compliance Process
The Prime Contractor checked for our DFARS 7012 compliance and were impressed with the Atomus system we had in place. It helped increased their confidence in our systems. We were able to increase trust with our customer and grow our military sales.
Danny Le,
VP of Vinaco Precision Machining Manufacturing
Real Compliance Results
Atomus radically simplied the cybersecurity and compliance process for my company to get DFARS 7012 compliant. We now have an industry leading cybersecurity and compliance program, and the SPRS score to show it.
Arun Nair,
Co-Founder of OpsLabsSoftware
Build Custom Cybersecurity
Hire a Third Party Provider
Time Cost
2 Weeks or Less
Monetary Cost
ITAR Compliant
Documentation
Audit Guarantee
5–6 Months
3–4 Months
Extremely Challenging
Extremely Challenging
Challenging
Don’t Lose a Customer
We weren’t able to bid on a big contract because of our cybersecurity compliance. Atomus helped us answer our cybersecurity questionnaire and pass an audit from our prime contractor.
