NIST 800-171

NIST SP 800-171 is a cybersecurity framework of 110 controls in 14 families published by the National Institute of Standards and Technology (NIST). This learning path will teach you how to comply with the requirements of NIST 800-171. You will understand what CUI is and how to identify it; what a nonfederal information systems is; how to understand each of the 110 requirements in the framework and satisfy each of them if necessary; how to create a Body of Evidence (BOE) including Organizational Policy or Procedures; a System Security Plan (SSP) and Plans of Action and Milestones (POAM). Upon completion of this course, you will have the knowledge and skills to implement the controls required by the NIST 800-171 framework and build your BOE.

Status: Cyber Security Policies

Status: Personally Identifiable Information

Course5 hours

Featured reviews

4.0Reviewed Oct 7, 2022

Good content but some of the assessment questions in week 7 are using CMMC version 1.02 and not 2.0.

5.0Reviewed Jul 9, 2022

Very informative. A great first couple of steps to get this material down!

4.0Reviewed Nov 8, 2023

There is A LOT of information to go over! It is laid out nicely, but sometimes it can be confusing and not communicated clearly. Overall, I enjoyed the course and learned something new.

4.0Reviewed Sep 29, 2024

It was great I wish it went into more detail on how to do the POAM and SSP

5.0Reviewed Nov 16, 2022

Great overview, and challenging, there is a lot to remember!

4.0Reviewed Aug 19, 2025

Content was really good but the audio needs some work.

5.0Reviewed Apr 19, 2023

Amazing course , well put together !!! Great for beginner

All reviews

Showing: 14 of 14

Gianluca Caiazza

5.0

Reviewed Jan 25, 2025

I thoroughly enjoyed this course! It was highly instructive, providing valuable insights and practical knowledge that I found both engaging and relevant. The concepts covered were well-explained and easy to grasp, yet sufficiently detailed to deepen my understanding. What I appreciated the most was how applicable the lessons are to my current and future work. The course has given me techniques that I am confident will greatly enhance my professional performance. I would highly recommend this course to anyone looking to expand their skillset in this field.

CJ Wright

5.0

Reviewed May 26, 2024

Material is a dry, but delivered in a consumable fashion. NIST 800-171 rev3 was published Nov 2023 & CMMC 2.0 was published Dec 2023, but course covers of mix of 800-171r2 & CMMC 1.02 + CMMC 2.0 (keep that in mind during the exam - question/answer key has only been partially updated).

Aaron Page

5.0

Reviewed Jul 10, 2022

Very informative. A great first couple of steps to get this material down!

Danny Stubbings

5.0

Reviewed Nov 17, 2022

Great overview, and challenging, there is a lot to remember!

Alexi Naawananuruk

5.0

Reviewed Apr 20, 2023

Amazing course , well put together !!! Great for beginner

huey allen

5.0

Reviewed Oct 15, 2024

good course and well presented.

Saud Saad AL-Abboush

5.0

Reviewed Mar 29, 2026

Excellent

S M

4.0

Reviewed Nov 9, 2023

There is A LOT of information to go over! It is laid out nicely, but sometimes it can be confusing and not communicated clearly. Overall, I enjoyed the course and learned something new.

Justin Thomas

4.0

Reviewed Oct 8, 2022

Good content but some of the assessment questions in week 7 are using CMMC version 1.02 and not 2.0.

Cynthia Noble

4.0

Reviewed Sep 30, 2024

It was great I wish it went into more detail on how to do the POAM and SSP

Tim McClain

4.0

Reviewed Aug 20, 2025

Content was really good but the audio needs some work.

Yaki Meller

3.0

Reviewed Jun 30, 2022

This course is ok. It has some technical issues: THe sound is not clear, the sub-text is horrible and the exam is confusing (like using two different date formats). If you are interested in the inforamtion in this course, I'd highly recommend only doing week number 7. It has all the data contained in this course, presented in about one single hour. You basicallty woun't miss anything by not viewing weeks 1-6.

David Anderson

3.0

Reviewed Aug 28, 2024

The course is outdated and there are 3 questions in the exam that, today, the system grades incorrectly. The latest developments in CMMC 2.0, Fed Reg 32 are not covered.

Eric Schrock

2.0

Reviewed May 16, 2022

The material was outdated, but still useful as a general overview. The test was absolutely emabarrassing and useless.