DFARS Resources
Many of these links are embedded in various presentations or on other tabs on this website, but they are all located here for your convenience.
DFARS 252.204-7012 – Safeguarding Covered Defense Information and Cyber Incident Reporting
DFARS 252.204-7019 - Notice of NIST SP 800-171 Assessment Requirements
DFARS 252.204-7020 - NIST SP 800-171 Assessment Requirements
NIST SP 800-171 Rev. 2 - NIST Cybersecurity Framework
NIST SP 800-171A – Assessment guidelines for NIST SP 800-171 Rev.2
DoD Assessment Methodology - Tool to use to compute your NIST compliance score
Supplier Performance Risk System – website to upload your compliance score
NIST SP 800-171, POAM Template, SSP Template - NIST templates for Plans of Action and Milestones POAM) and System Security Plans (SSP)
Project Spectrum - Online Gap Analysis Tool for NIST and CMMC Levels 1 – 2.
CMMC Center of Awesomeness – website developed by Compliance Forge to provide educational resources, technical solutions and gap analyses to NIST SP 800-171 and CMMC.
CONTACT US
Main Point of Contact:
Laura Rodgers
North Carolina Military Business Center
rodgersl@ncmbc.us
919-335-1207-
How to best utilize CyberNC.us: The CyberNC.us website was created to provide North Carolina companies with one location to find all the information they need to develop a cybersecurity compliance program that is compliant with Department of Defense regulations.
The most effective way to utilize the website is to follow the steps below:
- Understand the regulations. Click on the Cybersecurity Regulations tab and review the information about each of the regulations.
- Understand the data. Click on the FCI/CUI tab for detailed information about Federal Contract Information and Controlled Unclassified Information, then review the Cybersecurity Overview presentation.
- The information on the Where to Start tab will help businesses determine which regulation with which they must comply, as well as the level of compliance that is required.
- The DFARS tab contains information about compliance with DFARS 252.204-7012 and the new DFARS Interim Rule.
- The CMMC tab contains information about CMMC 2.0 and includes FAQs and resources.
- The Training tab provides information about resources businesses can use to train their employees.
- The Blog will be used to answer questions and provide clarification as needed. Please email Laura Rodgers at rodgersl@ncmbc.us for questions and/or clarification about compliance with the cybersecurity regulations.
- The Partners tab contains links to the websites of the I3C partner agencies.
-
The NCMBC and the I3C are not representatives of the DoD or the CMMC Accreditation body. This website is meant to be a community resource for cybersecurity compliance information.
Copyright 2020, North Carolina Military Business Center. All Rights Reserved.