Current Status
Not Enrolled
Price
Free
Get Started

CYBERSECURITY ASSESSMENT: REQUIREMENTS

NIST 800-171 Compliance

Complete this free cybersecurity assessment tool based on industry frameworks including the NIST Cybersecurity Framework to identify security concerns within your environment.  

SPRS Dashboard

The 171Comply, Supplier Performance Risk System (SPRS) Dashboard is a means for an organization to self-assess and produce the SPRS score.  171Comply does not warrant the accuracy of the organization’s self-assessment.  The score is the result of the organization’s self-assessment of their compliance to the listed Assessment Objectives.  171Comply has no influence, control, or responsibility for the accuracy or completeness of the organization’s self-assessment, and does not certify, approve, or validate any self-assessment.

Assessment Overall SPRS Score

Current Status
Not Enrolled
Price
Free
Get Started

Your SPRS Score starts at -204. Your accumulated score value increases as each requirement is met. A full compliance score is +110. See score value measurement scale for score ranges.

-204
-204
110

How This is Measured

Total Points Earned

Supplier Performance Risk System (SPRS) defines Assessment Objectives / Determination Statements Requirements with a point value of 5 as critical. Failure to meet any of these results in failure of assessment.

The 14 NIST SP 800-171 Domains, Progress Status Toward Completion

Progress chart based on the domain / group requirements.

0 of 21
Access Control (AC) C001 Establish system access requirements
0 of 3
Awareness & Training (AT) C011 Conduct security awareness activities
0 of 9
Audit & Accountability (AU) C008 Perform auditing
0 of 8
Configuration Management (CM) C013 Establish configuration baselines
0 of 11
Identification & Authentication (IA) C015 Grant access to authenticated entities
0 of 3
Incident Response (IR) C016 Plan incident response
0 of 6
Maintenance (MA) C021 Manage maintenance
0 of 9
Media Protection (MP) C023 Protect and control media
0 of 2
Personnel Security (PS) C026 Screen personnel
0 of 6
Physical Protection (PE) C028 Limit physical access
0 of 3
CMMC Risk Management (RM) C031 NIST Risk Assessment (RA) Identify and evaluate risk
0 of 4
Security Assessment (CA) C035 Define and manage controls
0 of 16
System & Communications Protection (SC) C039 Control communications at system boundaries
0 of 7
System & Information Integrity (SI) C040 Identify and manage information system flaws

Assessment Objectives Checklist

NIST 800-171 Security Assessment consists of 14 Domains containing a total of 110 security requirements Each requirement group contains the requirements related to the general security topic of the group. These groupings are intended to ensure it is straightforward for an organization to employ and self-assess the application of the requirements.

Assessment Content

Criteria Content
SPRS Points
Criteria Content
SPRS Points