Cybersecurity Rules: Part 4 - Three Things Government Contractors Should Know About System Security Plans

November 20, 2017​

Mark Amadeo to Discuss Flow Down Clauses under Defense Subcontracts at 2nd Annual Doing Business with DoD & The Intel Community Conference - Join Us!
On November 28, 2017, Mark Amadeo will be discussing flow down clauses under subcontracts supporting defense prime contracts at the 2nd Annual Doing Business with DoD and the Intel Community conference. The conference is organized by Jennifer Schaus & Associates and Virginia PTAP and brings together government subject matter experts and industry doing business with Department of Defense and intelligence agencies. To register for the conference, go here!
Mark Amadeo

     As we discussed in part 3 (here) of our vlog series covering different aspects of cybersecurity rules that apply to federal government contracts, the development of a system security plan and related plans of action is one mechanism for complying with a December 31, 2017 deadline under DFARS clause 252.204-7012 that defense contractors face for implementing the security requirements under NIST's SP 800-171 to their internal information systems.  Given the important role the plans play in compliance, in this fourth part of our vlog series, we discuss briefly three things defense contractors should know about system security plans and plans of action. 

     To listen to this vlog as a podcast click here.  To see other vlogs from The GovCon Video Blog™ go here.