Solving for CUI
Core to the Controlled Unclassified Information (CUI) standards set by NARA (National Archives and Records Administration) are not only the 240 potential CUI markings, but rules on how to apply them, how they should be formatted, as well as display requirements.
Additionally, these markings and metadata are meant to be control enablers, allowing other systems like attribute-based access control solutions (ABAC) or data loss prevention (DLP) systems to read and manage that unstructured data.
Companies can often be taken aback by the sheer number of combinations of markings, managing, and training. Where to start? How as an organization can you begin to develop and deploy what is required to meet the standards?
Because CUI is a set standard, Fortra gets organizations off on the right foot with a pre-built template that loads the necessary configurations to enable an organization the ability to mark their unstructured data and comply with CUI. Fortra has done the heavy lifting, so businesses can focus on deployment, education, and auditing.
Fortra’s pre-built template doesn’t mean companies are limited by the constraints of our template; instead, constraints do not exist. If required by your organization, businesses can even customize the look and feel of and even who the markings are presented to.
Our Solution
While CUI can be expansive, our decades of experience have allowed us to provide interfaces that are both visual and intuitive to limit the complexity for both administrators and the end user.
Administration - Policy Manager
Fortra’s Policy Manager administrative solution (SaaS or On-Premise deployment) provides admins with a visual approach to loading, maintaining, or modifying the metadata that will be used to properly classify company documents. Pre-defined templates, the ability to export/import configurations from test systems, and a drag and drop approach to building your company schema is at the core of our Policy Manager.
Once you load the CUI template, you can visually click through the schema and modify or enhance your deployment based on your company needs. Schema fields are on the left, how it will visually be represented to the users are in the middle, and if you select a field, any modifications for that field are on the right.
Guided User Experience
Just as important as delivering the capability to deploy CUI classification to an organization is the user’s ability to understand and easily apply the correct classification.
Users have a choice in how they manage and apply classification to the content they are creating.
The classification dialogue reflexively guides users to work through their choices and builds the classification visually to understand how they are going to classify the content.
Our user dialogue builds as choices are made by the user to guide them in making proper choices as they classify their content. As choices are made, the dialogue adds their choices in a banner to visually display how their document will be classified.
Save Time and Minimize Mistakes with Favorites
Our experience has shown that teams generally use the same classifications repeatedly, which is why Fortra’s DCS allows users to save “favorites” to deliver one-click CUI classification. This makes the complex much easier to consume, as we allow each individual to save up to 32 favorite classification combinations.
In complex environments, favorites are used to speed up the process of adding correct classifications to content that teams repeatedly create. The favorite name is unique to the individual and will never show on the content being classified.
Metadata To Support Downstream Controls
Fortra’s DCS is capable of applying visual and background metadata to each document, which can then be leveraged by other downstream systems.
Our DCS product offers actionable controls like warning/blocking when it comes to sharing restricted content by e-mail. We also help enable ABAC or DLP systems you may already own to apply electronic controls or block sharing based on document metadata.
Fortra’s DCS enables these controls with persistent and consistently stored metadata within the header record of the content you produce, allowing for easy reading and action by third party controls.
CMMC, like most regulations you encounter, not only requires you to add controls but also prove that those controls are in place and functioning as expected.
Fortra’s DCS consistently applies metadata and other capabilities, like scanning data at rest for management and reporting purposes, allowing organizations to create auditable reports to validate the requirements of CMMC and other regulations, to prove you are compliant and maintain your certification.
Deliver on CMMC
Fortra’s DCS is a proven solution with a long history of delivering for governments, militaries, and the military industrial complex globally. Decades of experience in creating consumable processes and methods for complex rules and regulation is at the core of our product.
Beyond complex regulations, Fortra’s DCS provides value by letting you drive all elements of your business with one solution. DCS allows you to service granular compliance needs, like CMMC, as well as straight forward business needs, from one suite of tools.
Learn more from one of our classification professionals today how Fortra’s DCS can be your organization’s comprehensive classification solution.
How protected is your data?
Meet with one of our experts to assess your needs, and we'll walk you through our solution.