All 110 NIST 800-171 Rev 2 security requirements across 14 domains.
Limit system access to authorized users, processes, and devices
Ensure personnel are aware of security risks and trained appropriately
Create, protect, and retain audit logs to enable monitoring and investigation
Periodically assess, authorize, and monitor security controls
Establish and maintain baseline configurations and inventories
Identify users, processes, devices and authenticate their identities
Establish incident handling capability and respond to incidents
Perform and control system maintenance with proper safeguards
Protect system media containing CUI in all forms
Limit physical access to systems, equipment, and operating environments
Screen personnel and protect information during personnel actions
Periodically assess, respond to, and monitor organizational risk
Monitor, control, and protect communications at system boundaries
Identify, report, and correct system flaws in a timely manner
