PRODUCED AND DEVELOPED BY IMPRIMIS INC
For Immediate Release
Imprimis and the DIB ISAC Sign Agreement on Cybersecurity Compliance
Agreement enables Defense Contractors to comply with mandated cybersecurity standards
Colorado Springs, CO, October 21, 2015 – Imprimis, Inc. (i2) and the Defense Industrial Base Information Sharing and Analysis Center™ (DIB ISAC™) are pleased to announce that they have reached a cooperative agreement on cybersecurity compliance. The DIB ISAC will use the Imprimis Cyber Assessment & Compliance Tool, the i2ACT–800, as the standard tool for determining defense contractor compliance with National Institute of Standards and Technology (NIST) standards, specifically NIST SP 800-171, which is required by newly modified DFARS sections 204.73 and 239.76 that went into effect in August of 2015. As part of the agreement, Imprimis will provide the DIB ISAC with services to support their members through cyber security consultation, assessments, remediation, and compliance audits as needed to meet these new requirements which allow DIB contractors to bid on Department of Defense (DOD) contracts.
The National Infrastructure Protection Plan (NIPP) identifies 16 critical sectors which then formed Information Sharing Analysis Centers or ISACs to build resilience in the sector through enhancing the security of member companies. The DIB ISAC is responsible for supporting all contractors in the defense industrial base nation-wide. The DIB ISAC has developed a methodology for verifying compliance and providing a contractor with a certificate of compliance with their Cyber Verify™ process to be used as necessary during procurement and proposal processes.
The Imprimis i2ACT-800 is a database software tool that reduces the labor and cost of compliance to a small fraction of what would be required for manual compliance using spreadsheets to map out the required control matrix. The tool contains nearly 30 baselines, including NIST 800-171 requirement and referenced controls, NIST 800-53 and 800-82 controls, the Federal Information Processing Standards (FIPS), and the baselines and overlays defined by the Committee for National Security Systems (CNSS) Instructions 1253. It provides easy tailoring, supports assessments including all documents (policies, network diagrams, setting screen shots, etc.), and provides a library of reports. The tool also provides the capability for full teams to collaborate on an assessment simultaneously while working on a single database.
This agreement will better enable the DIB ISAC to meet member cybersecurity compliance needs. The combined efforts of Imprimis and the DIB ISAC provide organizations with an effective way to demonstrate DFARS compliance to auditors and DOD contracting officers in a straight forward, efficient, and cost effective manner.
The DIB ISAC Executive Director, Steve Lines stated, “We all realize that increasing cybersecurity within the defense industrial sector is a critical national objective, but we have to find a way to make this effort both technically achievable and affordable for each member in the DIB. Our disciplined methodology combined with the Imprimis compliance tool make this possible. After examining many methods and tools, the Imprimis i2ACT-800 is the best and is
now our standard. The Imprimis-DIB ISAC agreement provides a standard methodology, and
tool for assessing organizational compliance with the key aspects of this DFARS clause and the
organization’s overall cybersecurity posture.”
Michael Semmens, i2 President stated, “The threat to America and its citizens from the cyber
domain has become one of the greatest threats to national security and economic expansion.
Strong cybersecurity is no longer an option but an absolute requirement, especially in the defense
industrial base. Imprimis is pleased to be supporting the DIB ISAC team in pursuit of this
goal.”
About Imprimis, Inc.
Headquartered in Colorado Springs, CO, Imprimis (i2) was founded in October 2004 with the
mission to support government and private organizations in achieving operational excellence
with the effective use of technology…’turning technology into capability.’ I2 supports a number
of commercial and government clients with advanced technology design and development in
both space and cyber domains, advanced training, and cybersecurity and network services
including COOP (Continuity of Operations), cybersecurity standards assessment and
compliance, and remediation. For more information visit: www.Imprimis-Inc.com
Contact
Imprimis, Inc.
Heather Lewis
Heather.Lewis@Imprimis-Inc.Com
(719) 785-0313
About DIB ISAC
The DIB ISAC is headquartered in Huntsville Alabama as a 501 (c6) nonprofit supported by its
membership. The objective of the DIB ISAC is to facilitate collaboration among the chapter's
members to defend corporate key resources and critical infrastructure against security threats and
to collectively encourage their use of national DIB ISAC resources. The DIB ISAC primary
functions are to gather and share information/analysis on security issues whether related to cyber
or physical events; threats and intrusions; facilitate security best practice sharing; and enhance
the ability of the DIB sector to prepare for, respond to and mitigate risk due to security threats,
vulnerabilities and incidents. For more information visit: http://www.dibisac.net/
Contact
Name: Steve Lines
Executive Director
Address: 6767 Old Madison Pike, STE 285
Hunstville, AL 35806
Email: Steve.Lines@dibisac.net