Earlier this week, the OMB’s Office of Information and Regulatory Affairs (OIRA) announced that it had received a Federal Acquisition Regulation (FAR) notice of proposed rulemaking (NPRM) for “FAR Case 2021-019, Standardizing Cybersecurity Requirements for Unclassified Information Systems”. An earlier version of this NPRM was recently withdrawn from review at OMB.
According to the Fall 2022 Unified Agenda listing for the rulemaking:
“DoD, GSA, and NASA are proposing to amend the Federal Acquisition Regulation to standardize common cybersecurity contractual requirements across Federal agencies for unclassified Federal information systems, pursuant to Department of Homeland Security recommendations in accordance with sections 2(i) and 8(b) of Executive Order 14028, Improving the Nation’s Cybersecurity. As a result, this rule will ensure Federal information systems are better positioned to protect from cybersecurity threats.”
There is no public record of what may have changed between
the earlier version of this NPRM and the one currently being reviewed by OIRA.
No comments:
Post a Comment