author photo
By SecureWorld News Team
Mon | Sep 11, 2017 | 8:50 AM PDT

The deadline is December 31, 2017.

Tripwire explains:

If you have contracts with the United States Department of Defense (DoD) or are a subcontractor to a prime contractor with DoD contracts, your organization has until December 31, 2017, to implement NIST SP 800-171. This is a requirement that is stipulated in the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012.

In the context of this article, DFARS focuses on two things: safeguarding Covered Defense Information (CDI), and reporting cyber incidents.

Tags: GRC,