Gap Analysis
Gap Analysis Overview
The Compliance as a Service platform also includes the optional compliance assessment portal, which allows for convenient self assessment for all NIST SP 800-171 / CMMC 2.0 L2 controls, also referred to as the Gap Analysis. Nimbus Logic will assist you in completing your Gap Analysis, providing all the relevant documentation for all in-scope, Microsoft cloud services and managed endpoints.
The portal automatically generates your organization’s NIST SP 800-171 summary level score for submission to the supplier performance risk system (SPRS).
Further to your SPRS score generation, the compliance assessment portal also automatically generates your plan of action and milestones (POA&M) document and your system security plan (SSP).
Key Features
Assessment & SPRS Score
The compliance assessment automatically generates your organization’s NIST SP 800-171 summary level score for submission to the supplier performance risk system (SPRS). One of our trained Registered Practioners walks through the assessment with you, reviewing each of 110 security requirements.
Plan of Action & Milestones & System Security Plan
Automatically generate your plan of action and milestones (POA&M) document, saving you dozens of hours. The system also generates your system security plan (SSP) that is tailored to your organization by one of our consultants. Both a POA&M and SSP are required to meet NIST SP 800-171 / CMMC requirements
Policy & Procedure Documentation
To demonstrate cybersecurity maturity and to meet NIST SP 800-171 requirements, the compliance assessment portal provides you with a number of pre-built policy documents you need to become compliant. They are all completely customizable and one of our consultants assist you in tailoring them to fit your needs.
Maintain Compliance
Be prepared for surprise DoD audits by staying on top of your compliance. Our platform’s automated reminders assign maintenance tasks to team members, making sure everything gets done on time.