Contractors to Give GSA IT Security Plans

Photo: Juanjo Tugores

The General Services Administration will require vendors to provide information technology security plans detailing how they are meeting federal cyber regulations under a new rule published Friday.

GSA said that changes are will apply to IT contracts awarded after Jan. 6, 2012 and that contractors must submit their IT security plans within 30 days of the contract award.

The plan should detail the processes and procedures the contractor will follow for “appropriate security of IT resources… used under the contract.”

GSA said it will use this information to verify that IT data and systems are effectively secured from unauthorized users. GSA will also inspect prime contractors’ and subcontractors’ facilities and IT systems.

Both prime and subcontractors will submit written proof of IT security authorization six months after the award in order to verify the validity of their security plan. The required plans and proposals will be included in IT contract solicitations.

Check Also

AI

DOE Awards Funding to AI R&D Projects

The Department of Energy (DoE) has earmarked $8.5 million in funds to support five three-year projects that seek to enable reusability and accessibility of artificial intelligence data and models. The selected projects will cover the areas of materials science, high-energy physics, microbial science and high-performance computing. 

Leave a Reply

Your email address will not be published. Required fields are marked *