Robert Metzger is the head of the D.C. office of Rogers Joseph O'Donnell, PC, a boutique law firm that specializes in government contracting. He represents and advises leading companies in aerospace and defense and information technology. ...
Understanding Cyber Security for Government Contractors
Concerns over cyber security are rising to the top of the agenda for every agency. Pressures are increasing on agencies to improve protection of federal information and data. Due to these concerns, agencies are taking initiatives to require contractors to implement cyber safeguards. These new requirements appear in solicitations and contracts, and as flowdown terms. Companies that want to win contracts need an informed firm understanding of how the federal government expects its contractor’s cyber security to defend against and respond to cyber threats.
This course covers the fundamental topics related to cyber security that government contractors need to know. Beginning topics will cover the federal cyber security initiative, how federal agencies assess cyber risk, and use of acquisition methods to improve contractor cyber security. The course continues to explain Controlled Unclassified Information (CUI), the NIST SP 800-171 safeguards, and DoDs DFARS ‘Network Penetration Reporting and Contracting for Cloud Services’ regulation. Topics include compliance with regulatory and contractual requirements to protect CUI and DoD’s ‘Covered Defense Information’ (CDI). This course concludes with a review of the FAR “Basic Safeguarding Rule”.Like