Guidance and Support for Government Contractors

By: s.m.amend | December 29, 2017


Further guidance regarding cyber security compliance has been provided by Ellen Lord, the Defense Undersecretary for Acquisition, Technology, and Logistics. The January 1, 2018 deadline for being 100% compliant has been relaxed to now “the only requirement for this year is to lay out what your plan is” said Ms. Lord in a briefing given on December 7, 2017. She goes on to say “that can be a very simple plan.” So, perhaps cyber security is not as scary as it initially seemed!

 

Don’t get too comfy thinking you can put off cyber security a little longer. This clarification still requires contractors to have a System Security Plan by December 31st.  Your System Security Plan describes the current state of your information system and out...

By: s.m.amend | April 09, 2017

Effective June 15, 2016, the DoD, GSA, and NASA issued a final rule “amending the Federal Acquisition Regulation (FAR) to add a new subpart and contract clause for the basic safeguarding of contractor information systems that process, store or transmit Federal contract information.” (Federalregister.gov).

The new subpart FAR 4.19, Basic Safeguarding of Covered Contractor Information Systems, includes contract clause 52.204-21.  The rule is mandatory, and effective immediately upon contract award or contract modification execution.  

Law.Cornell.edu notes that the clause, “Does not relieve the Contractor of any other specific safeguarding requirements specified by Federal agencies and departments relating to covered contractor info...