In an effort to help small manufacturers meet the the Department of Defense (DoD) minimum cybersecurity requirements, the Foundation for Manufacturing Excellence (FME) has put together a group of services and resources. These resources aim to make the daunting process of making sure small contractors are in compliance, which has become a problem for some.
According to John Lloyd, chairman FME’s board, “Despite a Dec. 31, 2017, deadline to meet the new DoD information technology requirements, many small- and medium-sized DoD manufacturing contractors do not have the knowledge or resources to upgrade their information technology systems and are at risk of losing their contracts. For others, the inability to meet these new security guidelines greatly diminishes their competitive edge.”
Since all DoD contractors or subcontractors that process, store or transmit Covered Defense Information (CDI) must meet the Defense Federal Acquisition Regulation Supplement (DFARS) minimum security requirements, it’s important to help smaller manufacturers navigate the complex requirements set forth by the DoD.
The tools are available through the Manufacturing Extension Partnership (MEP) in conjunction with the National Institute of Standards and Technology as part of the U. S. Department of Commerce’s efforts to help manufacturers in the U.S.. The resources are comprised of free online resources, such as webinars, and affordably-priced in-person consultation with cyber-security professionals.
Additional online assistance includes:
“Cybersecurity Self-Assessment Handbook for Assessing DFARS Security Requirements.” For self-assessment of a manufacturer’s information systems with regards to DFARS requirements.
Cybersecurity Self-Assessment Tool. Looks at your risk of cyber attack.
The “Manufacturing Profile” of the Cybersecurity Framework. How to reduce the risk of cyber security issues.
“Information Security for Small Business: The Fundamentals.” Cybersecurity best practices.
For more information, visit www.nist.gov/mep/mep-center-quick-list.