Ready to get compliant?

Show Me How
Linkedin Youtube
Open Menu
Talk To Us

What is DFARS?

Defense Federal Acquisition Regulation Supplement: The Catalyst for CMMC & NIST SP 800-171

While there are many DFARS requirements that may affect your organization the following Defense Federal Acquisition Regulation Supplements regarding Cybersecurity and the protection of controlled unclassified information (CUI) are important to understand and adhere to if your company generates any revenue either directly or indirectly from the Department of Defense (DoD) or any DoD-related organization.

No Time to Research?

This Can Get Complicated!  Let us Help!

Give Us A Call

DFARS 252.204-7008

Compliance with Safeguarding Covered Defense Information Controls

Key Points:

  • Requires 252.204-7012 security requirements to be implemented for all Covered Defense Information on all covered contractor information systems.
  • Introduces NIST SP 800-171 requirements Via DFARS 252.204-7012
What is NIST SP 800-171?
Untitled design 16

Not Sure if You Handle CUI?

Check out this Blog!

Let's Talk

DFARS 252.204-7012

Safeguarding Covered Defense Information and Cyber Incident Reporting

Untitled design 18

Key Points:

  • Organization must protect controlled unclassified information (CUI) in accordance with NIST SP 800-171.
  • Organizations must report cyber incidents to the DoD within 72 hours of discovery.
We Can Help!
“The NeQter Policy Builder Tools have been instrumental in streamlining our SSP process and made quick and easy work of the ongoing reviews and control updates. The clean, intuitive, efficient and organized layout coupled with control hints and artifact attachments allow us to maintain our SSP in real time with little effort. Absolutely wonderful tool that eases the NIST/CMMC documentation burden. .”
- CTO, McLaughlin Research Corporation

DFARS 252.204-7019

Notice of NIST SP 800-171 DoD Assessment Requirements

Key Points:

  • Notifies all DIB contractors that they must perform a self-assessment based on the DoD Assessment Methodology a minimum of once every 3 years.
  • All DIB contractors must have a current and accurate score posted in the DoD Supplier Performance Risk System.
What is SPRS?
Untitled design 15

Know Your Compliance Blind Spots!

Know what you don’t know…….before it’s too late.

Download Now

DFARS 252.204-7020

NIST SP 800-171DoD Assessment Requirements

Untitled design 19

Key Points:

  • Requires contractor to perform and submit a self assessment of their compliance against NIST SP 800-171 in accordance with the DOD Assessment Methodology.
  • Requires contractors to flow down requirement to their subs and suppliers.
We Can Help!

Would You Pass An Audit?

See how NeQter Stacks up against the Top 10 Requirements that most companies do not meet according to the Defense Contract Management Agency (DCMA). 
Download Now

DFARS 252.204-7021

Cybersecurity Maturity Model Certification Requirements

Key Points:

  • Contractors must pass a CMMC assessment and certification must be present at time of award.
  • Certification must be renewed via a new assessment every 3 years.
  • Requires contractors to flow down requirement to their subs and suppliers.
Now What?
CMMC

No Time to Understand or Implement Compliance?

Talk to our compliance experts to evaluate your needs and guide you to the appropriate solutions.

Talk To Us

Download Now!

Talk To Us