Research sponsors and government agencies increasingly expect universities to implement baseline information security requirements to protect sensitive data. These requirements impact institutions’ ability to conduct research and apply to other sensitive data, such as student financial aid records.
Is your information security program ready to support NIST 800-171 cybersecurity requirements?
Many research sponsors require that universities protect Controlled Unclassified Information (CUI) by following NIST 800-171, “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.” These requirements often appear in contracts involving sensitive data, such as healthcare research and projects considered important to national security.
If your institution conducts research funded by the Department of Defense, you must also plan for meeting Cybersecurity Maturity Model Certification (CMMC) audit requirements. These requirements add additional requirements, including an external audit and certification process.
The Department of Education also considers student financial aid data to be Controlled Unclassified Information, so institutions must also consider how to protect student financial data according to NIST 800-171 requirements.
Our CYBER HEAT MAP™ ADVANCED CISO coaching services help higher education institutions be ready to meet NIST 800-171 cybersecurity requirements.
Get help from a higher education expert with over 20 years of experience leading university information security and technology programs. With an affordable annual retainer, we will help you:
Learn how an affordable cybersecurity coaching retainer can help you improve your information security capabilities. Book a free 30-minute consultation to discuss your needs and learn how we can help.
Copyright © 2021 C Schreiber LLC. All rights reserved.