Cybersecurity
Cybersecurity is critically important to protecting DoD’s and your information.
Depending on the agency and the work, your business may need to meet a certain standard of cybersecurity compliance.
- DoD requires contractors to report on network penetrations. The requirements are detailed in DFARS Clause 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting.
- This program provides a comprehensive framework to protect the defense industrial base’s (DIB) sensitive unclassified information from frequent and increasingly complex cyberattacks.
- In November 2020, the DFARS was amended to include additional cyber provisions related to assessment requirements and CMMC. The additional provisions are DFARS clause 252.204-7019, 252.204-7020 and 252.204-7021. The current version of those clauses are available here.
- The CMMC program continues to evolve so it’s important to stay abreast of changes. Learn about the Cybersecurity Maturity Model Certification program.
- Project Spectrum is a comprehensive, cost-effective platform that provides companies, institutions, and organizations with cybersecurity information, resources, tools, and training.
- The DoD Office of Small Business Programs (OSBP) initiated Project Spectrum as a comprehensive platform to provide the tools and training needed to increase cybersecurity awareness and maintain compliance in accordance with DoD contracting requirements. Review the detailed resources on their website. https://www.projectspectrum.io/#/