Comply with NIST Cybersecurity Framework

Improve cybersecurity for critical infrastructure

What is the DFARS/NIST program?

Text

The National Institute of Standards and Technology (NIST) is part of the U.S. Department of Commerce. As one of the nation’s oldest physical science laboratories, NIST provides technology, measurement, and standards to the U.S. government and its agencies. The NIST Cybersecurity Framework provides a voluntary set of guidelines for managing and reducing cybersecurity risk. Organizations across many industries and countries are now using the Framework as a basis for risk management discussions and decision-making. Fortra’s Data Classification Suite (DCS) solutions help organizations align with the Identify, Detect, and Respond functions of the Framework, as described below.

How Fortra Data Classification Solutions Work

Identify: Access management

Asset Management (ID.AM): The data, personnel, devices, systems, and facilities that enable the organization to achieve business purposes are identified and managed consistent with their relative importance to business objectives and the organization’s risk strategy. 

ID.AM-3: Organizational communication and data flows are mapped. DCS solutions monitor user handling of email and documents, producing log files that can be used to track data flows and communication. DCS solutions can also provide a data inventory of files stored on-premise and in the cloud. 

ID.AM-5: Resources are prioritized based on their classification, criticality, and business value. With support for automated, system-suggested, and user-driven classification, DCS solutions enable organizations to identify the sensitivity and business value of unstructured data.

Learn how to meet NIST SP 800-171 and CUI compliance requirements to protect Controlled Unclassified Information

VIEW THE SOLUTION BRIEF