Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Pedro
Newcomer I
‎09-13-2022 11:05 AM
‎09-13-2022 11:05 AM

Recommendation for NIST auditor

We have a software product that is subject to a 'hybrid' NIST audit, and the quotes we are getting do not seem to fit the scope of work. Our responsibility is only 63 controls, but (in some cases) the quotes we are getting would appear to include hundreds of hours. They are truly all over the place.

 

Looking for a recommendation for a reasonable audit group that might give this better consideration. Perhaps, the groups we are contacting just have more work than they need... 

 

Thanks! 

Reply
0 Kudos
2 Replies
wimremes
Contributor III
‎09-13-2022 11:21 AM
‎09-13-2022 11:21 AM

Are we talking about NIST 800-53? Are there any requirements regarding the auditor from the customer?

 

Feel free to DM me. I can put you in touch with my US-based colleagues who regularly work on this type of projects.


Sic semper tyrannis.
Reply
0 Kudos
Kingsdajo
Newcomer I
‎11-12-2022 05:30 AM
‎11-12-2022 05:30 AM

I trust you will post more like that later on. Appreciative for sharing such mind blowing information.

Reply
0 Kudos