From: Bloomberg Government
***
They must also implement a convoluted, 80-page National Institute of Standards and Technology (NIST) rulebook that includes five appendices for monitoring the use of “controlled unclassified information,” (CUI) with titles such as “mapping tables” and “tailoring criteria,” according to a Sept. 21 guidance issued by Shay Assad, DOD’s director of defense pricing/defense procurement and acquisition policy.
Yet even Assad recognizes how difficult it may be for contractors without strong compliance departments to meet the new requirements. “There is no single or prescribed manner in which a contractor may choose to implement the requirements of (the NIST document), or to assess their own compliance with those requirements,” he wrote.
Leave a Reply