DFARS 252.204-7012 with Jenny W Clark

Cyber Security Requirements for Defense Contractors

DOD Cybersecurity Requirements

December 2017

NIST 800-171

CUI- Controlled Unclassified Information

Notify DOD CIO

Self-Asserted SAM Audit Teams

Cyber Requirements

Access controls and passwords

Personally Identifiable Information (PII)

Reporting System to submit malicious software

Elements of Cybersecurity Program

Holistic approach

Requires multi-disciplinary team

Planning and preparedness

Prevention

Risk management

Verification/Compliance

Employee training

Legal counsel

Don’t just restore backups!