Security Assessment

Whether you are a business just trying to understand the security of your information systems,  you are dealing with regulatory compliance, or if you are a government contractor dealing with the new OMB and DoD requirements to be compliant with NIST Special Publication 800-171, Evolved Cyber Solutions is ready to help you.

Our security assessments are tailored to your specific needs.  Our team has decades of experience conducting security assessments.  We have expert knowledge of all of the National Institute of Standards and Technology (NIST) standards and guidelines, ISO 27001, HIPAA, PCI, NERC CIP and countless other standards and regulations.

ECS assesses your environment using our standards based methodology and provides you with a prioritized roadmap for achieving compliance and for improving your overall security program.  ​

Doing business with the US Department of Defense or the US Federal Government? 

Then as you know, on August 26, 2015 the DoD issued a new DFAR statement requiring prime contractors and their subcontractors to employ “adequate security” measures to protect “covered defense information.” Specifically, contractors must adhere to the security requirements in the version of NIST SP 800-171 Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations.   The DoD issued an amendment to this ruling on December 30, 2015 that allowed contractors until December 30, 2017 to be 100% compliant.  In the mean time, the amendment requires the contractor to provide a written assessment of the state of their compliance with 800-171 to the DoD CIO within 30 days of receiving a contract or subcontract award.  This new DFAR language is currently appearing in new contracts and contract modifications issued by the DoD.

Evolved Cyber Solutions is ready to help you assess your compliance and provide you with a roadmap to 100% compliance by the end of 2017, using our proven 800-171 assessment methodology.

The OMB is expected to finalize their guidance to federal contracting authorities later in 2016.