The Defense Department and General Services Administration are working to outline a path for integrating cybersecurity standards into the government’s acquisition process, Federal Times reported March 21.
Nicole Blake Johnson writes the government plans to set baseline cybersecurity requirements for cyber-related aspects of federal contracts.
DoD and GSA will accept public comments on the proposed implementation plan until April 28, according to the report.
Emile Monette, senior adviser for cybersecurity at GSA’s mission assurance office, said the plan’s baseline standards will need approval from the National Institute of Standards and Technology.
Monette also said government personnel responsible for the acquisition lifecycle will have to assess the security requirements of contracts, according to Federal Times.
Joe Jarzombek, director for software and supply chain assurance at the Department of Homeland Security, added that the government also intends for the standards to focus on the supply chain, Federal Times reports.