The Supplier Performance Risk System (SPRS) represents the exclusive, officially sanctioned solution utilized by the Department of Defense (DoD) for accessing supplier performance data. SPRS operates as an enterprise-level web application designed to collect, analyze, and present supplier performance metrics. Compliance with the Defense Federal Acquisition Regulation Supplement (DFARS) Subpart 213.106-2 requires contracting officers to consider SPRS risk assessments as a basis for contract awards.
Procurement personnel use the Supplier Risk Score within SPRS to gain insight into the supplier’s performance in product price, quality and delivery. In addition, the ability to safeguard government data is an essential consideration in the procurement process. Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) are examples of government data that a supplier needs to protect.
NIST SP 800-171 provides recommended requirements for protecting CUI in non-government environments. Suppliers need to demonstrate that they have implemented adequate security measures to protect the covered information. The NIST SP 800-171 self-assessment summary results must be inputted into SPRS.
Do you have any government contracts that are specifically asking you to upload your organization’s NIST SP 800-171 self-assessment score to SPRS? After spending countless hours of researching, do you still not know where to start? Let us help you navigate this journey so you could focus on what matters most, your business.
Contact us and get a quick idea of how you may benefit from performance-driven technology systems.