DFARS Compliance: What You Need to Know About The New DoD Cyber Regulation/Cybersecurity
Learn how to prove conformance with the new Dept. of Defense Cyber Regulation/Cybersecurity and trade risking your DoD-related revenue for a competitive advantage.
The Defense Federal Aquisition Regulation Supplement went into effect December 31, 2017 for all Defense Contractors, Suppliers, and Defense Manufacturers regardless of size in an effort to secure Dept. of Defense Covered Defense Information (CDI) or Controlled Unclassified Information (CUI).
If your company generates any revenue related to the Department of Defense, this information is for you as it’s required for you to win and maintain future contracts.
This workshop lead by MassMEP and CyberSaint Security will discuss the cybersecurity regulation, what is required of your company and how to best approach proving compliance while avoiding misdirected time and resources. Being compliant gives your company a competitive edge as 87% of all defense contracts already had the regulation written in them as of 2017, according to the National Institute of Standards and Technology. Some suppliers are even marketing their compliant status as primes are moving away from non-compliant suppliers to find compliant ones.
You may have received a questionnaire about this regulation from your prime. Filling out this questionnaire does not make your organization compliant. Instead, you must implement cybersecurity measures detailed in NIST Special Publication 800-171 and produce a System Security Plan (SSP) and Plan of Actions and Mitigations (POAM) ready for submission at request. This workshop will explain what these compliant documents are, the DFARS assessment process and how to prove adequate cybersecurity enough to secure your DoD-related contracts.