DOD Close the Gap Audits
Are you in the defense supply chain?
December 31, 2017, was the U.S. Department of Defense’s (DOD) deadline for ALL defense contractors, at any tier of the supply chain, with Defense Federal Acquisitions Referral Supplement 252.204-7012 and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171.
What is DFARS 252.204-7012?
Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 requires that all DoD suppliers implement NIST SP 800-171 to address 14 security families.
What is NIST 800-171?
The National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-171 guidelines protect the defense supply chain in non-federal systems and organizations.
What is Cybersecurity Maturity Model Certification (CMMC)?
The Cybersecurity Maturity Model Certification (CMMC) is a new cybersecurity certification currently being developed by the DoD for all defense suppliers to validate cybersecurity compliance.
What is the risk of not being compliant?
If you are a government contractor, failure to meet these requirements will result in the loss of existing and/or future contracts.
A breach of security in the defense supply chain is a potential risk to national security.