From: Federal Times
By SEAN REILLY
Defense Department contractors will have to report cyber-attacks that result in the loss of technical information under a new rule that takes effect this week.
Contractors throughout the supply chain have been targeted by criminals seeking to steal unclassified technical data, Frank Kendall, the department’s acquisition and technology chief, said in a statement. “This is an essential step to ensure that this valuable information is protected.”
Defense firms will also have to incorporate established information security standards on to their unclassified networks, Kendall said.
The final rule, published in Monday’s Federal Register, is dramatically scaled back from the Pentagon’s initial 2011 draft, which alarmed both contractors and open-government advocates. That proposal would have placed new controls on unclassified DoD information not cleared for public release that was either provided by DoD to a contractor or else developed by a contractor on the department’s behalf. Those controls would have required in two forms: basic and enhanced.
Leave a Reply