Search Results for: DFARS

The 2019 DFARS Glossary: DFARS vs FAR and Other Acronyms for Government Contractors

It’s 2019 and our updated DFARS glossary is here. With our expanded DFARS glossary, Sera-Brynn defines key terms for cybersecurity compliance in the government space. There are many key terms you need to know – especially if you’re part of the DIB (see below), working through the DFARS cyber regulation, using cloud services, or responsible… Read more »

Still Lagging on DFARS? The Navy Has A Memo For You

by Heather Engel, Sera-Brynn Chief Strategy Officer The Assistant Secretary of the Navy recently released a memo imposing additional requirements on select contracts. For the last three years, Defense contractors have been working (some more diligently than others) to comply with DFARS clause 252.204-7012 that requires implementation of NIST SP 800-171. I’ve written numerous articles… Read more »

DoD releases a much-anticipated update to the FAR/DFARs FAQs.

What you need to know now By Heather Engel, Sera-Brynn Chief Strategy Officer DoD’s original FAQ was issued in January 2017, with answers to 59 questions on general application, security requirements, and cloud computing. The FAQ issued on April 2, 2018 nearly doubles that with answers to 109 questions on DFARS 252.204-7008 and 252.204-7012, FAR… Read more »

DFARS 7012 and Supply Chain Cyber Risk Management

Day-in and day-out, U.S. companies are under cyber-attack by criminals, hacktivists, bored kids and nation-states. Nation-state sponsored actors, including China and Russia, are known as Advanced Persistent Threat (APT) actors, and have been extremely successful in compromising the networks of commercial organizations, particularly those companies conducting work for the Department of Defense. In fact, these… Read more »

DFARS 7012

Federal and DoD compliance is more than DFARS 252.204-7012. Besides the controls in NIST 800-171, you also have to handle supply chain management, understand cloud services, and report incidents. And all this is while managing a security strategy and keeping track of changes and revisions to Federal policy. You have lots of choices if you’re looking… Read more »

DoD issues clarifying guidance on DFARS Clause 252.204-7012

2017 saw the release of additional guidance aimed at both contractors and procurement officers regarding the implementation of DFARS Clause 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting”. Here at Sera-Brynn, we’ve written extensively on aspects of this clause and the associated NIST Special Publication 800-171. 800-171 describes adequate security for Protecting Controlled Unclassified… Read more »

State of DFARS Compliance 5 Months From 31 Dec 2017 Deadline

As of Q2 2017, 87% of all defense contracts contained DFARS clause 252.204-7012. As of July 2017, 93% of Navy contracts, 83% of Air Force contracts, and 72% of Army contracts had the clause, with a goal of 100%. Source: Defense Procurement and Acquisition Policy Based on non-attributable statistical data we have collected through our… Read more »

Should DFARS Compliance be treated differently than every other compliance assessment? No.

By John Kipp, COO Sera-Brynn DFARS 7012 is one of numerous compliance criteria Sera-Brynn assesses for clients across the country. They include manufacturing, ship repair, logistics, technology development, extremely large consulting firms, and more. Like industry-specific compliance criteria in other market verticals, we employ the full technical breadth of our security engineers to assist them… Read more »

Will 2018 Be A DoD Contractor Washout? A DFARS 7012 Analysis

Sera-Brynn anticipates a defense industry “washout” as Department of Defense contractors and subcontractors scramble to meet DFARS 7012 cybersecurity regulations. U.S. defense contractors, particularly subcontractors, are at risk of failing to meet mandatory cybersecurity standards required to do business with the U.S. Department of Defense. The Defense Federal Regulation Supplement (also known as “DFARS”) requires… Read more »