CMMCDocs.comHome / Glossary / System and Information Integrity (SI) Family
System and Information Integrity (SI) Family
Also known as: SI family
The SI family covers 7 NIST SP 800-171 requirements governing flaw remediation, malicious code protection, security alerts, and system monitoring.
The System and Information Integrity (SI) family contains 7 NIST SP 800-171 Rev 2 security requirements covering how the contractor identifies and remediates flaws, protects against malicious code, monitors system activity, and responds to security alerts.
Key SI requirements include identifying, reporting, and correcting flaws in a timely manner (SI.L2-3.14.1), providing protection from malicious code (SI.L2-3.14.2), monitoring system security alerts (SI.L2-3.14.3), updating malicious code protection mechanisms (SI.L2-3.14.4), performing periodic scans (SI.L2-3.14.5), monitoring inbound and outbound communications for unusual activity (SI.L2-3.14.6), and identifying unauthorized use of organizational systems (SI.L2-3.14.7).
Most contractors implement SI requirements through endpoint detection and response (EDR) platforms, antivirus, IDS/IPS, and SIEM correlation rules.
Stop Googling. Start working.
CMMCDocs has all 110 NIST SP 800-171 Rev 2 requirements built in — with the language, the templates, and the evidence vault you need. Spin up a free demo workspace and click around the way an assessor would.
Get my demo account