DFARS Compliance Preparation Services
If your organization works closely with the Department of Defense (DoD) or similar agency, then you must be Defense Federal Acquisition Supplement (DFARS) compliant. The main thrust of DFARS is to maintain the security of Controlled Unclassified Information (CUI) under NIST SP 800-171. We guide your organization to meet the DFARS requirements to achieve full compliance as quickly as possible.
To combat the growing level of cyber threats, SP 800-171 contains a total of 110 controls that must be met by DoD contractors to successfully comply with the DFARS. Our deep industry knowledge and experience enables you to quickly achieve compliance with minimal business disruption.
​
Who must comply with DFARS requirements?
All prime contractors and subcontractors for the DoD that work with Covered Defense Information (CDI) and Controlled Unclassified Information (CUI) must be DFARS compliant. Also, entities with DFARS clause 252.204.7008 as a part of their contract must be compliant.
If you’re not sure about the status of your company, we can answer any questions about DFARS compliance to avoid putting your DoD contracts at risk.
Your DFARS Compliance Assessment
Compliance readiness evaluation may include:
-
Review key IT security policies, procedures, and technical documents
-
Interview relevant business and IT stakeholders
-
Examine workflows that include CUI / CDI
-
Evaluate CUI / CDI access privilege control and processes
-
Review physical and electronic data lifecycles
-
Identify gaps in critical security controls relevant to DFARS compliance