Compliance Services
PCI Services
NIST Assessments
Additional Services
Compliance Services
NIST SP 800-171 Assessment
Safeguard and securely distribute assets categorized as Controlled Unclassified Information (CUI) under the NIST SP 800-171 framework
Service Overview
NIST SP 800-171 Assessment
Initially published in June 2015, NIST Special Publication 800-171 is a set of standards that define how to safeguard and distribute material deemed sensitive but not classified, otherwise referred to as Controlled Unclassified Information (CUI).
Both the CUI designation and the NIST SP 800-171 framework are intended to standardize and replace previous designations and frameworks. For companies doing business with the Federal Government, adherence to this standard is mandatory if any data will be transmitted to, stored on, or processed by your information systems.
Our Approach
Our expert assessors partner with your team to ensure your systems are sufficient to protect the confidentiality of CUI both at rest and in transit. Receive trusted advisory support throughout the process, as well as guidance on how to address any weaknesses in your processes and systems.
Key Benefits
NIST SP 800-171
Protect the confidentiality of CUI
Protect CUI at rest & in transit
Ensure compliance of your information systems
Take control of cyber risk
What is the Purpose of NIST SP 800-171?
NIST SP 800-171 provides federal agencies with regulations for protecting the confidentiality of CUI when:
CUI resides in nonfederal information systems/organizations.
CUI resides in information systems not operated by contractors of federal agencies or organizations on behalf of federal agencies.
There are no specific regulations for the protection and maintenance of CUI confidentiality prescribed by the authorizing law, regulation, or government-wide policy for the CUI category or subcategory listed in the CUI Registry.
NIST SP 800-171
The 14 Security Requirement Families:
Access Control
Audit and Accountability
Awareness and Training
Configuration Management
Identification and Authentication
Incident Response
Maintenance
Media Protection
Physical Protection
Personnel Security
Risk Assessment
Security Assessment
System and Information Integrity
System and Communications Protection
MegaplanIT prides itself on establishing top certifications including:

SOC For Service Organizations

Certified Level 1 PCI DSS Service Provider
Nevada Gaming Control Board
IT Service Provider Gaming License
SOC for Service Organizations
Certified Level 1 PCI DSS Service Provider
IT Service Provider Gaming License
When You Work With MegaplanIT
When You Work With MegaplanIT




Make Our Team, Your Team!
At MegaplanIT, we understand the demands of your business. You need your data to be accessible to your organization, yet impenetrable from the outside. You also have to comply with increasingly stringent information security regulations, which are vital not only to your security but to your success. On top of that, you’re still, well—running a business.
Our innovative IT security and compliance solutions are designed to deliver customized, cost-effective service on time—because your priorities are our priorities. With a highly qualified team of PCI-DSS QSAs, Penetration Testers, and Information Security Consultants here at MegaplanIT, we will assess your unique company and business environment and design a path to security that will fit all of your needs.