NIST 800-171 rev. 1 : for College/University Cybersecurity Professionals
DO YOU NEED A GUIDE TO MANAGE AND IMPLEMENT THE 110 SECURITY CONTROLS?This book is specifically written for the cybersecurity specialist or professional needing to understand and implement the 110 NIST SP 800-171 security controls. It is not just about the protection of Controlled Unclassified Information (CUI) because your institution is receiving federal funds. It's about protecting the nation's Intellectual Property (IP)...and you are the first line of defense.This book is written as a step-by-step approach to the 110 security controls. Not all controls need to address immediately, but must be documented, monitored, and managed during the life of the system and data housed within university data centers. Additionally, included are the additional "sub-controls" that were released in June 2018. While this has added to the number of total controls, if the cybersecurity professional or specialist has completely implemented the base control, many of these added controls can be easily answered and addressed to government contract oversight officials.There is still much more work that needs to be done in the area of cybersecurity. We are constantly reminded of ongoing intrusions to both public and private sector websites. What we do here, unlike so many books and articles, is that we describe the "how" to do and fix the specific control. While the challenges are many and ever-changing, the objective of this book is to provide you an initial start-point with many directions to good and complete resources to protect not just CUI data, but the overall IP of your college, university, or research facility.