Contractors affected by the US cybersecurity requirements: take part in the GWAC comment process
By Dionis M Gauvin, Fernand A Lavallee PC and Jim Halpert
The US General Services Administration is seeking comments from the private sector on draft Alliant II Government Wide Acquisition Contract (GWAC) cyber-security requirements. The Alliant GWAC provides flexible access to customised IT solutions from a large, diverse pool of industry partners. We urge contractors whose business may be affected by the cyber-security requirements to participate in this process. The comment period will be open for 45 days. After the comment period closes, the target date for implementation is January 2015.
The draft language addresses cyber-security requirements for the Alliant II GWAC, which is currently in the acquisition phase. The purpose of these requirements is to improve cyber-security risk management in the services purchased through orders placed under the Alliant II GWAC. In drafting the cyber-security requirements, the Alliant Program Office was assisted by the interagency working group responsible for drafting the recommendations included in the joint report by the GSA and the Department of Defense, Improving Cybersecurity and Resilience through Acquisition.
Specifically, the draft language requires contractors to provide a Contract Cyber-security Risk Management Plan, outlining the contractor’s ‘systematic and organisational’ ability to provide solutions that include ‘appropriate security controls’ for any task within the scope of the contract. ‘Cybersecurity Risk Management’ is defined as technologies, practices and policies that address ‘threats and vulnerabilities in networks, computers, programs and data’. The draft language describes the submittal, review and acceptance process for risk management plans, as well as the process for updating plans and correcting deficiencies…
Click on the link below to read the rest of the DLA Piper briefing.
Sign in or Register to continue reading this article
It's quick, easy and free!
It takes just 5 minutes to register. Answer a few simple questions and once completed you’ll have instant access.Register now
Why register to The Lawyer
In-depth, expert analysis into the stories behind the headlines from our leading team of journalists.
Identify the major players and business opportunities within a particular region through our series of free, special reports.
Receive your pick of The Lawyer's daily and weekly email newsletters, tailored by practice area, region and job function.
More relevant to you
To continue providing the best analysis, insight and news across the legal market we are collecting some information about who you are, what you do and where you work to improve The Lawyer and make it more relevant to you.
News from DLA Piper
News from The Lawyer
Briefings from DLA Piper
Health Alert — Julia Clare v Australian Community Pharmacy Authority; Dr Reid v Medical Council of NSW; and more
DLA Piper has released the 22 December 2014 issue of its Health Alert, which focuses on judgments, legislation and reports in the health sector.
The European Court of Justice (CJEU) has handed down a landmark judgment concerning the patentability of stem cells in Europe.
Analysis from The Lawyer
Regulators are ramping up the pressure in the aftermath of recession, leaving firms to compete for compliance and restructuring work
Shearman & Sterling is making its presence felt in the City, squaring up to magic circle firms and looking to muscle in on key relationships. Private equity house Bridgepoint is one outfit that has had its head turned by the US firm.