Join us for the fourth monthly installment of our webinar series exploring Department of Defense (DOD) cybersecurity compliance requirements, where we take a closer look at specific regulatory elements materially impacting government contractors and their subcontractors — all in just 45 minutes. The Government Contracts Cyber Café Series provides coaching, training and analysis to help you work through the technical, legal, accounting and other complications confronting your organization, with the goal of helping you achieve compliance with the current DFARS cyber rules, regulations and contract clauses.
During our July 17 webinar, “Bid and Proposal: Protect Your Business With Notifications,” we will discuss best practices for mitigating risk when preparing and submitting proposals that are subject to DFARS 252.204-7012 and 252.239-7010. Whether you are a prime contractor or a supporting subcontractor at any tier, there are steps you should take at the proposal preparation stage to identify your cybersecurity gaps and, where necessary, inform your upstream customer of any compliance requirements that you cannot satisfy. You are not alone. There are many entities that are not yet fully compliant and will not soon be fully compliant with DOD’s cybersecurity rules. The rules contemplate that offerors may have compliance gaps, but prescribe specific steps to be followed to provide adequate notification of those gaps and to demonstrate a satisfactory level of functional equivalency for mitigation of cyber risk associated with the gaps.
Hilary Cairnie, chair of Pepper Hamilton’s Government Contracts Practice Group, and Heather Engel, chief strategy officer for cybersecurity firm Sera-Brynn, will discuss these issues and some practical steps you might consider to identify your cyber gaps and effectively communicate those to your upstream customer.
Revision to FAQs Regarding the Implementation of DFARS Subpart 204.73 and PGI Subpart 204.73, DFARS 239.76 and PGI Subpart 239.76 (.pdf)
Bid and Proposal - Protect Your Business With Notifications slides (.pdf)
Cyber Cafe Series 071718 Bid and Proposal Notes (.pdf)
August 21: Self-Assessment and Re-Validation: Maintaining Compliance and Internal Cyber Audits
September 18: Cyber Incidents and Reporting Duties
November 20: Subcontracting - Managing Risk Through Contract Negotiation
December 4: The Year in Compliance
All webinars listed above begin at 8:30 AM and last 45 minutes.
Contact Jennifer Kuban at 412.454.5823 or firstname.lastname@example.org with any questions.