NIST 800-171
HumRRO reached an important milestone in 2023 by achieving full NIST 800-171 compliance, which included the implementation of technical security controls, policies, and enhanced operating procedures. Published by the National Institute of Standards and Technology, NIST 800-171 is a set of cybersecurity requirements recommended for protecting the confidentiality of controlled unclassified information (CUI) when the information is resident in nonfederal systems and organizations. It applies to contractors, vendors, or suppliers that are in contractual vehicles or other agreements with federal agencies.
ISO/IEC 27001:2022
HumRRO proudly earned ISO/IEC 27001:2022, which is a globally recognized cybersecurity certification. To meet this standard, HumRRO was audited by American Global Standards (AGS) and successfully demonstrated the documentation, implementation, and maintenance of an appropriate Information Security Management System to meet the requirements of the updated 2022 standard. ISO/IEC 27001 outlines requirements for maintaining an ISMS that help organizations keep their information assets secure. While ISO certification is optional, HumRRO believes it is important to stay in front of the most robust cybersecurity practices and protocols and to assure clients we are following proven security standards.