hncyberhnspacehntraininghnBloghncompliancecenterhninsidercmmcupdate

Release Notice Version 3.6

i2ACT-800 PRO AND i2ACT-800s Imprimis, Inc. is pleased to announce the new release (v3.6) of the i2ACT-800 PRO and i2ACT-800s cyber security compliance tools. The i2ACT-800 PRO update complies with DFARS Subparts 204.73, 239.76 and contains all 970 NIST 80053r4 controls, enhancements; 800-53A, and the Defense Security Service Assessments and Authorization Process Manual (DSS AAPM) enhanced 800-53 controls.

Ver36thumbnailpicThe update contains all 110 of the 800-171 revision 1 requirements along with 800-171A and the NIST Handbook 162 guidance as follows:

  • DSS AAPM v1.2 Control Updates released in November 2017 (v1.3 was released in May 2018 with updated risk management information – the controls are the same as in v1.2)
  • Updated SP 800-171 revision 1, released in June 2018 which includes minor editorial changes to selected requirements and the addition of Appendix F (“Discussion”)
  • SP 800-171A initial release in June 2018 containing assessment procedures and methodology
  • Handbook (NIST HB) 162, Self-Assessment Handbook, guidance on implementing 800-171 in response to DFARS clause 202.254-7012
  • Various bug fixes and some cosmetic updates

The i2ACT-800s update complies with DFARS Subparts 204.73, 239.76, contains all 110 requirements, 800-171A, the NIST Handbook 162 guidance, and the referenced controls from NIST 800-53, to include:

  • Updated SP 800-171 revision 1, released in June 2018 which includes minor editorial changes to selected requirements and the addition of Appendix F (“Discussion”)
  • SP 800-171A initial release in June 2018 containing assessment procedures and methodology
  • Handbook (NIST HB) 162, Self-Assessment Handbook, guidance on implementing 800-171 in response to DFARS clause 202.254-7012
  • Various bug fixes and some cosmetic updates We anticipate that the next major update (v4.0) to the i2ACT-800 PRO and i2ACT-800s tools will include:
  • NIST 800-53 revision 5. Currently, the release of NIST 800-53 revision 5 is scheduled for March 2019. With the v4.0 update, the user will be able to select either use of revision 4 or revision 5 at the beginning of an assessment.
  • Enhanced functionality allowing multiple tasks per requirement to be defined in the assessment process thereby enhancing the POA&M produced directly from the tool.
  • Enhanced note-taking to include an area for the assessors unpublished notes.
  • (Potentially) A professional Assessors version of the tool which includes the Imprimis Cybersecurity Compliance Essentials (IC2E™) for each requirement or control, including remediation items.
  • Any other errata or changes published by NIST during the interim period.