Federal regulations require departments and agencies to protect the confidentiality, integrity, and availability of information types known as “controlled unclassified information” (CUI). Safeguarding requirements are specified in the Federal Information Security Modernization Act (FISMA) of 2014. The Department of Defense requires its suppliers to protect the confidentiality of “covered defense information,” which includes all CUI categories. The National Institute of Standards and Technology (NIST) is the source of controls and enhancements used to protect CUI on federal information systems.
Premium Content For:
- Solo, Small Firm and General Practice Division