US Department of Defense (“DoD”) contracts include DFARS clauses that require you to score your company’s compliance with the NIST SP 800-171 standard. To meet these requirements, you must perform a gap assessment using the techniques described in NIST SP 800-171A, as informed by NIST Handbook 162, and then calculate the resulting score using the DoD Assessment Methodology. Scores can range from -203 to 110.
If that sounds confusing to you, you’re not alone. Many contractors struggle with where to start. FutureFeed takes the stress out of this process.
Companies just getting started with cybersecurity rarely score a perfect 110 score. Any company with a score less than 110 should have one or more Plans of Action and Milestones (“POA&Ms”). These POA&Ms describe how the company plans to achieve the 110 score, and defines time-based milestones for when the score will be achieved.
You must submit the scores, along with other information, to DoD via the Supplier Performance Risk System (“SPRS”). Your SPRS score allows procurement officers and prime contractors to compare your cyber posture to competitors.
FutureFeed is the step-by-step tool for completing your NIST SP 800-171 and CMMC cybersecurity compliance requirements. Our intuitive user interface and carefully designed questions streamline the hardest parts of any compliance program: data collection and decision making. Simply enter your company information by answering questions based on the NIST SP 800-171 standards, and FutureFeed will automatically generate your gap assessment and SPRS score.
FutureFeed focuses on efficiency and security. Enter your company data once, and FutureFeed securely stores it for you and populates that information in other places throughout the tool. As the information changes, such as by implementing IT technology changes or improving your cyber posture, you simply update the corresponding information once in FutureFeed. FutureFeed then automatically updates your SPRS score and our other numerous reports. This lets your team focus on getting things done, rather than creating and maintaining reports.
Whether closing gaps with existing standards or proactively making improvements as new threats and requirements emerge, IT and cyber programs need to be maintained. FutureFeed allows you to create and track projects and gives you the tools and data needed to make risk-informed project decisions.
Creating a secure and compliant environment involves people from across, and even outside, your organization. FutureFeed makes it easy for team members to access and provide updates as they improve your cyber posture and implement new technologies. FutureFeed’s highly collaborative environment empowers everyone with better project and portfolio-level insights, helping them ensure they are focused on the right projects, and giving you visibility to track project progress and tasks over time.
Stop wasting time updating presentations. FutureFeed automatically generates powerful presentations at the push of a button. Now you can easily update your executive team about your IT and cyber posture at any time. Our customers are consistently impressed by how easy it is to present and give answers to important security project questions, IT technology priorities, budgets, and team accountabilities. No other compliance tool has an easier way to share data and information.
FutureFeed helps you demonstrate your IT and cyber posture anytime.
Generate your required gap assessment with the IT technology data you have on-hand. Input your information with step-by-step in-app guidance for all the controls and requirements relevant to your business.
Automatically generate and publish DoD-required Supplier Performance Risk System (SPRS) scores and other mandated reports, like Plans of Actions & Milestones (POA&Ms), and System Security Plans (SSPs).
Share your security posture with your executive leadership. Create compelling, on-demand presentations and retrieve detailed answers to important questions about your company’s security posture.
Build your project, assign your team, and calculate your budget needs based on the priorities needed to improve your cybersecurity posture.
Grant internal and external user permissions and access to FutureFeed and collaborate on priority projects, budgets, IT technology improvements and other initiatives.
Store your data, including policies, processes, and strategic documents. You can rest knowing your documents are securely stored in FutureFeed's Fed Ramp High Authorized, AWS Gov Cloud secure repository. With FutureFeed you have 24/7 access to everything you need to prove compliance at anytime
© 2022 FutureFeed.co. All rights reserved.
Disclaimer: The appearance of U.S. Department of Defense (DoD) visual information does not imply or constitute DoD endorsement.