Cybersecurity, Privacy, & AI

Trending Now

Plankey Withdraws Nomination to Lead CISA • What Federal Leaders Need to Know About Iran’s Cyber Campaign • Navy Deploys SABER Cybersecurity System Fleetwide • The Supreme Court Is About to Decide How Far Geofence Warrants Can Go • FedRAMP Solicits Public Comment on Overhaul to Incident Communications Procedures

Published on June 28, 2022 • Cyber

DOD Memo Identifies Penalties for Noncompliance with DFARS Cyber Requirements

Den Rise | Shutterstock

While Cybersecurity Maturity Model Certification 2.0 is still a work in progress, federal contractors should beware of the existing DFARS cybersecurity requirements. The Department of Defense issued a memo on June 16, 2022, directing Contracting Officers to enforce penalties on DoD contractors that fail to comply with DFARS Clauses 252.204-7012 (Safeguarding Covered Defense Information and Cyber Incident Reporting) on contracts not subject to either DFARS 252.204-7020 (DoD Assessment Requirements) or, by implication, DFARS 252.204-7021 (CMMC), which his not currently in effect.

Compliance with DFARS Clauses 252.204-7012 is critical. DoD’s recent memo reminded Contracting Officers of the remedies for noncompliance, which include the government’s options of “withholding progress payments; foregoing remaining contract options; and potentially terminating [contracts] in part or in whole.”

Source:

Fox Rothschild: DOD Memo Identifies Penalties for Noncompliance with DFARS Cyber Requirements

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.