NIST-800 Compliance is a standard for information security to all external organizations working in concert with federal branches of government. NIST compliance ensures that necessary protocols are in place to monitor, restrict access, and prevent the loss of Controlled Unclassified Information (or CUI).
A small Florida Manufacturing Firm manufacture CNC close tolerance machined parts, custom components, and assemblies for the defense sector. Given the sensitive nature of the parts being manufactured, it was vital that communications and manufacturing specifications were secure while organizational infrastructure was put in place and maintained to NIST Compliance.
ITonDemand was already providing our CORE solution for the firm. In addition, we were providing them with all hardware, software, email, and even file sharing. With this existing relationship in place, we offered our Security+ which provided the necessary measures to prepare for NIST Compliance certification.
Following a 110 point checklist, the team at ITonDemand either confirmed or applied compliance standards across fourteen families of security requirements to protect the valuable work being done.
Hardware and software can be replaced. Data cannot. For effective incident response, ITonDemand gathers events from log files, monitoring tools, error messages, intrusion detection systems, and firewalls to detect and determine incidents and their scope. ITonDemand then mitigates and responds to any incidents that may occur.
System and Communications Protection
Communications is the greatest vulnerability. To protect the manufacturing firm, we impose role-based security, separate privileged and non-privileged access, lock down access into their network from the outside, provide employee security training, and a myriad of other prevention standards.
Other Articles You Might Be Interested In:
Disaster recovery plans are vital, not just important. Data becomes lost, deleted, purged, corrupted, all the time. Without that measure in place, data is truly lost. There does seem to be confusion on what constitutes a Disaster Recovery plan, however. While many...read more
Data backup is a critical part of an organization’s overall disaster recovery plan. The concept of data backup is simple: you make copies of your data and store them in a different location in case data is lost or destroyed.read more
Founded in 1999, ITonDemand helps businesses and associations across the US achieve growth by guiding and supporting IT infrastructure and providing cybersecurity management. ITonDemand’s Core Solution and Security+ have been recognized among both Managed Services and Cybersecurity Providers as a member of the MSP Pioneer 250 and the Top 200 MSSPs.