Cybersecurity, Privacy, & AI

Trending Now
Top House Cyber Lawmaker Plans to Introduce DHS Overhaul Bill by Next Year • Executive Orders Seek to Hasten Quantum Computing—and Guard Against Its Use • In a First, a Court Takedown Goes After Two Cybercrime Tools at Once • NIST Opens Updated IoT Security Guidance to Public Review • Five Eyes Agencies Urge Leaders to Strengthen Cyber Resilience in AI Era
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on June 27, 2022 Cyber

FAR Updates Will Require Cyber Incident Reporting for Contractors

FAR Updates Will Require Cyber Incident Reporting for Contractors

Stuart Miles | Shutterstock

Federal CISO Chris DeRusha promises that the Federal Acquisition Regulation will be updated to require contractors to disclose cyber incidents—“a pretty logical thing to do”—but it will take a year or two to make happen. OMB has submitted two proposals taking steps down that road, and agencies already are taking independent steps in that direction. For example, the Department of Education has implemented a FAR deviation to include supply chain actions, secure software requirements, and Federal Risk and Authorization Management Program adherence in contracts, which it is using to award contracts to compliant startups over incumbents.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024