This two-day workshop is designed for organizations that are in the process of fulfilling DFARS 252.204-7012/NIST SP 800-171 requirements. Attendees will leave the workshop with significant portions of their System Security Plan (SSP), Incident Response Plan (IRP), and Plan of Actions & Milestones (POA&M) completed. Attending organizations can expect the development of their SSP, IRP, and POA&M catered to their specific needs and deficiencies.
Each workshop consists of two days of hands-on interactions with the instructor and cybersecurity engineers from Totem Technologies, an Impact Utah partner. Organizations that have completed a workshop will receive 30 days of phone and software support while they complete their SSP, IRP, and POA&M. Day 1 will focus on providing an overview of DFARS 252.204-7012/NIST SP 800-171 and FAR 17. Organizations will then begin creating their SSP with workshop faculty. Day 2 will transition to procurement and maintenance of an External Certification Authority (ECA) Certificate for Incident Reporting, followed by a scenario-based creation of an IRP. The workshop will conclude with further development of each organization’s SSP and POA&M.