Hello,

So i work for a small machine shop that has no system security plan which is what im trying to implement right now. We are trying to register with the JCP to enable us to be a vendor for government contracts. I feel like I’m going thru this template and none of it is applicable. We use things like mastercam and have a company email. But files are stored on a computer or are blueprints on paper stored in a filing cabinet. Im pretty lost as far as creating a security plan and i have no experience with this at all. We’re just trying to get some outside work from a research lab associated with the states college. Things like machining parts are essentially what we are looking to do. Any help or direction would be appreciated. A few questions i have are below. We need to have a plan implemented in order to complete the self assessment…

Should i be factoring in mastercam as a system we use? What about listing our company email? Is writing n/a an acceptable answer?

This security template is clearly designed for corporations much larger than our 6 employee machine shop. Thanks in advance!