CMMC for Manufacturers, FAQs
Download our CMMC for Manufacturers guide and review FAQs.
.jpg?ext=.jpg)
Smithers Adds Cybersecurity Certifications
Smithers Quality Assessments division celebrated its 30th anniversary in 2023. That anniversary marks over three decades of certifying quality, environmental, and safety management systems and issuing certifications for ISO 9001, ISO 14001, ISO 45001, AS9100, IATF 16949, and more.
Now, Smithers has expanded its certification services to include cybersecurity.
Cybersecurity Certifications Versus Quality Management Certifications
The word "cybersecurity" today tends to draw images of hackers and data breaches. The certifications Smithers now offers are at the intersection between cybersecurity, information security management systems (ISMS), and data for which the United States Department of Defense mandates protection. Specifically, Smithers now offers ISO 27001 and NIST SP 800-171 certifications and assessments.
At the foundation, these cybersecurity certifications are similar to the other certifications Smithers has worked with over the last thirty years. Periodic assessments and recertifications still form the basis of the process in this sector. Indeed, earning an ISO 9001 certificate can help businesses simultaneously achieve some of the ISO 27001 and NIST SP 800-171 requirements. In all of these scenarios, buy-in from the leadership team, clear and concise documentation, and regular check-ups are necessary.
ISO 27001 and NIST SP 800-171: Smithers Expertise, Your Advantage
The inclusion of ISO 27001is a natural one. Its foundation is similar to ISO 9001. What differentiates it is Annex A, a series of 93 controls that focus specifically on ISMS (Information Security Management Systems). Because Smithers has so many years of experience certifying companies to ISO 9001, businesses that wish to maintain ISO 9001 certification and add ISO 27001 can easily work with Smithers on both efforts. This allows Smithers you to receive more services with a known entity and perhaps in less time than earning two certifications would take with another certifying body.
Many Smithers clients are suppliers within the DIB (Defense Industrial Base) and so the the protection of CUI (Controlled Unclassified Information), which is the core of NIST SP 800-171 and CMMC, is undeniably important. Smithers’ experts have worked with and for the Department of Defense and are ready to share perspectives and valuable insights with you, helping you understand the timelines, requirements and your path forward.
Smithers wishes to offer companies in the DIB (Defense Industrial Base) services from a well-established and experienced assessment and certifying body. Smithers can also add these newer certifications to ones already provided, so, again, companies can work on multiple certifications for less time and expense.
Working with Smithers on your cybersecurity certifications offers the following benefits:
Questions?
Have questions about ISO 27001 or NIST SP 800-171? Are you feeling unsure which you need, or even if you should pursue either? Contact us today so we can discuss your specific organizational needs and questions.