I’m curious to how many member of this community are dealing directly with the new guidelines with NSIT 800-171 and CMMC. It would at least be helpful to me to learn how others in the IT world are meeting the specific controls within the NIST and I will gladly share how we meet controls as well.
I am in the middle of NIST 800-171 first time doing it.
Are you ‘just doing’ it or under a DFARS contract to get it complete? I would be happy to share anything I have to help you out. Its a daunting task to take on, unless you have 30-40K in your budget to hire a Bob.