The devastating effects of cyber security attacks on commercial and classified information networks have prompted industry and government leaders to take steps to implement safeguards, not only within their own organizations, but throughout their supply chains as well.

NIST Special Publication SP 800-171 outlines a minimum set of standards that the U.S. Department of Defense (DoD) applies to all DoD contractors. NIST SP 800-171 is also being adopted by other industries, such as automotive.

Manufacturers operating in commercial supply chains should consider implementing the NIST security requirements as an integral aspect of managing their organizational risks and competitiveness as more and more OEMs focus on cyber security as part of their supplier qualification.

The NY MEP Network has been active in providing awareness and assistance to help NYS manufacturers protect their information assets from the risks of cyber-attacks. MEP Centers can provide valuable assistance to small-to-medium size manufacturers seeking reduction of their cyber risks and compliance with DFARS 2152.204-7012, a clause in the Defense Federal Acquisition Regular Supplement (DFARS) that covers that safeguarding of defense information and cyber incident reporting.

To support this effort, the NY MEP Cyber Fund was developed to help NYS manufacturers reduce their cyber security risk. The program helped over 40 eligible NYS companies with cybersecurity assessments and remediations.