Basic Cybersecurity Compliance Requirements for Government Contractors

The ever growing number of cybersecurity breaches and incidents occurring both in the commercial and public sectors in recent years has resulted in heightened focus on the protection of the Federal Government’s information by government contractors. Currently, the two most important contract provisions addressing these concerns are FAR 52.204-21–BASIC SAFEGUARDING OF COVERED CONTRACTOR INFORMATION SYSTEMS (JUNE 2016) and DFARS 252.204-7012 –SAFEGUARDING COVERED DEFENSE INFORMATION AND CYBER INCIDENT REPORTING (OCT 2016).

With the December 31, 2017 compliance deadline for DFARS 252.204-7012 quickly approaching, government contractors need to be aware of the distinctions between these two important cybersecurity contract clauses. The chart linked here highlights the pertinent provisions of each.

For more information, contact MWL Counsel Peter Fish.