NIST SP 800-171 & CMMC 2.0 Control 3.9.1 Requirement:

Screen individuals prior to authorizing access to organizational systems containing Federal Contract Information.

NIST SP 800-171 & CMMC 2.0 3.9.1 Requirement Explanation:

Personnel security screening (vetting) involves the evaluation of an individual\’s trustworthiness prior to authorizing access to systems containing CUI.

Example NIST SP 800-171 & CMMC 2.0 3.9.1 Implementation:

Perform federal background checks on individuals before granting them access to systems that contain CUI. If you conduct federal background checks on all employees before hiring them then you are meeting this requirement.

NIST SP 800-171 & CMMC 2.0 3.9.1 Scenario(s):

- Scenario 1:

Your company wins a DoD contract where it will handle “Controlled Unclassified Information” (CUI). You instruct Human Resources to perform a federal background check on all individuals who will work on the contract.
 

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:

/assets/images/app/complaince_accelerator.gif

Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.
Become Compliant
/assets/images/app/quantum_accelerator.gif

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.
Provide Services
/assets/images/app/supply_chain_verifier.gif

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.
Verify Subcontactors