DOD Issues Final Rule For Contractors To Report Cyberattacks

Law360, Washington (October 20, 2016, 4:33 PM EDT) -- The U.S. Department of Defense on Thursday sought to clarify the exact kinds of unclassified information that contractors must safeguard under its final rule covering requirements for reporting network penetrations and Pentagon policy on buying cloud services.

Changes to interim versions of the Defense Federal Acquisition Regulation Supplement on Network Penetration Reporting and Contracting for Cloud Services published last year include a clarified definition of “covered defense information” that must be safeguarded and an exemption for contracts buying only items that are available commercially and off...
To view the full article, register now.