Cybersecurity, Privacy, & AI

Trending Now
Agriculture Department Kicks Off $300M Palantir Deal on IT, National Security Work • Vercel Attack Fallout Expands to More Customers and Third-Party Systems • Seeing the Cyber in Economic Statecraft • Responding to a Data Breach: How to Preserve the Attorney-Client Privilege • NIST Cyber Center to Launch OT ‘Visibility’ Project
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on June 27, 2022 Cyber

FAR Updates Will Require Cyber Incident Reporting for Contractors

FAR Updates Will Require Cyber Incident Reporting for Contractors

Stuart Miles | Shutterstock

Federal CISO Chris DeRusha promises that the Federal Acquisition Regulation will be updated to require contractors to disclose cyber incidents—“a pretty logical thing to do”—but it will take a year or two to make happen. OMB has submitted two proposals taking steps down that road, and agencies already are taking independent steps in that direction. For example, the Department of Education has implemented a FAR deviation to include supply chain actions, secure software requirements, and Federal Risk and Authorization Management Program adherence in contracts, which it is using to award contracts to compliant startups over incumbents.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024