NicheITS Compliance

Customer Security and Data Protection is our Priority

We value the trust customers place in Niche Information Technology Solutions (NicheITS). NicheITS compliance is committed to providing our customers and partners with a secure environment, leveraging modern technologies and solutions to safeguard customer information. The NicheITS Privacy and Website Cookie Policies are designed to assist website visitors and customers in understanding how NicheITS collects, use, and safeguards the information customers provide to NicheITS.

NicheITS security framework is governed by Information Security Standard and utilizes the comprehensive set of security requirements and controls within US National Institute of Standards and Technology (NIST) Special Publication 800-53 – Security and Privacy Controls for Information Systems.

GENERAL DATA PROTECTION REGULATIONS (GDPR)

NicheITS Niche information technology solutions nicheits fedramp cmmc iso27001 soc1 soc2 cyber security compliance cloud engineering afwerx hosting cybersecurity maturity model gap analysis aws azure google onprem architecture federal agency agencies Risk management Framework RMF NIST 800-53 ATO documentation Office365 migration advisory services SAAS IAAS SecAAS Microsoft redhat platform1 plateformone DISA STIG CIS baseline configuration hardening cm-2 DOD Department of Defense Army Navy Marine 8500.2 8500.1 Impact Level IL4 IL5 IL6 governance risk jab conmon Steelcloud configos exchange sharepoint dynamics365 adfs active directory gdpr stateramp 27701 cmmc ccpaOn May 25, 2018, a new European privacy regulation called the General Data Protection Regulation (“GDPR”) went into effect. As a company, NicheITS is GDPR ready, having reviewed our business processes and forms to confirm our compliance with the new requirements, including an individual’s right to access their personal data, their right to be forgotten, their right to data portability, and their right to be notified of a breach. NicheITS currently does not have any GDPR requirements through our Information Systems.

NIST 800-53

NicheITS Niche information technology solutions nicheits fedramp cmmc iso27001 soc1 soc2 cyber security compliance cloud engineering afwerx hosting cybersecurity maturity model gap analysis aws azure google onprem architecture federal agency agencies Risk management Framework RMF NIST 800-53 ATO documentation Office365 migration advisory services SAAS IAAS SecAAS Microsoft redhat platform1 plateformone DISA STIG CIS baseline configuration hardening cm-2 DOD Department of Defense Army Navy Marine 8500.2 8500.1 Impact Level IL4 IL5 IL6 governance risk jab conmon Steelcloud configos exchange sharepoint dynamics365 adfs active directory gdpr stateramp 27701 cmmc ccpaNicheITS implements NIST 800-53 FedRAMP Moderate and where possible High controls on internal and customer leveraged systems and solutions. NicheITS continually evaluates our compliance with NIST 800-53 Rev 5.

NIST 800-171 DFARS

NicheITS Niche information technology solutions nicheits fedramp cmmc iso27001 soc1 soc2 cyber security compliance cloud engineering afwerx hosting cybersecurity maturity model gap analysis aws azure google onprem architecture federal agency agencies Risk management Framework RMF NIST 800-53 ATO documentation Office365 migration advisory services SAAS IAAS SecAAS Microsoft redhat platform1 plateformone DISA STIG CIS baseline configuration hardening cm-2 DOD Department of Defense Army Navy Marine 8500.2 8500.1 Impact Level IL4 IL5 IL6 governance risk jab conmon Steelcloud configos exchange sharepoint dynamics365 adfs active directory gdpr stateramp 27701 cmmc ccpaNational Institute of Standards and Technology Special Publication 800-171 was released in June 2015. It focuses on protecting the confidentiality of Controlled Unclassified Information (CUI) in non-federal information systems and organizations and defines security requirements to achieve that objective. NicheITS have undergone a self-assessment that confirmed compliance with NIST 800-171 controls. NicheITS continually evaluates our compliance with NIST 800-171.

CCPA Compliance Standards

The California Consumer Privacy Act (CCPA) is a data privacy law, specific to the processing of personal information of California residents that requires businesses to protect their personal information and provides privacy. NicheITS has always demonstrated its commitment to its user’s data privacy, by consistently exceeding industry standards. NicheITS welcomes CCPA as a strengthening force of the privacy-consciousness that already exists in it.