The federal government released new guidelines June 13 for companies to assess if they comply with requirements to handle controlled but unclassified information.

The National Institute for Standards and Technology released SP 800-171A, which contains more than 100 requirements for companies and agencies to test whether they are in line with federal stipulations to work with sensitive information.

The guidelines are aimed at identifying potential problems in security, singling out environmental weaknesses and prioritizing risk mitigation.

The federal rule to handle controlled unclassified information, or CUI, is laid out in SP 800-171.

Companies who use CUI can either self-test, use a third-party auditor, or in some cases be inspected by government officials, according to Ron Ross, a fellow at NIST. Most companies will elect to self-test.

For each requirement, there is at least one way for a company to analyze if it is federally compliant.

Businesses may be required to examine documentation, interview officials to ensure they retain sufficient knowledge, or test technical capacity to meet just one standard. At times, a requirement may call for a combination of the three methods.

“Organizations also have flexibility in defining the level of rigor and detail associated with the assessment based on the assurance requirements,” the new policy says.

The guidelines follow two previous draft requests for public comment.

Justin Lynch is the Associate Editor at Fifth Domain. He has written for the New Yorker, the Associated Press, Foreign Policy, the Atlantic, and others. Follow him on Twitter @just1nlynch.

Share:
In Other News
Sen. Ruben Gallego to block VA nominations until plans to cut staff are dropped
Marine Corps vet lawmaker says Trump administration is harming veterans' benefits with plans to change VA.
0 seconds of 2 minutes, 10 secondsVolume 0%
Press shift question mark to access a list of keyboard shortcuts
00:00
02:10
02:10
 
Senator vows to hold all VA nominees over planned staff cuts
Plans to cut more than 80,000 staffers from VA offices would severely hurt benefits delivery, said Arizona Democrat Sen. Ruben Gallego, a Marine Corps vet.
Load More