3.12
Security Assessment
4 controls · 2 weighted 5 points · NIST SP 800-171 Rev 2
3.12.1Periodically assess security controls for effectiveness5 points
3.12.2Develop and implement plans of action to correct deficiencies3 points
3.12.3Monitor security controls on an ongoing basis5 points
3.12.4Develop, document, and update System Security Plans (SSP)Not scored (SSP gate)
Estimate your SPRS score in 2 minutes
15 quick questions across the highest-impact controls — instant estimate, no signup.
Estimate my SPRS score →Source: NIST SP 800-171 Rev 2 (public domain) · SPRS weighting per the DoD Assessment Methodology