Following the breach of the Office of Personnel Management’s systems in 2015, DOD decided to implement new cybersecurity regulations (DFARS 252.204-7012). The new regulations are intended to protect defense information, understand the full scope of cyberattacks against defense contractors, and reduce the vulnerability of cloud computing attacks. DOD contractors must comply with these regulations from August 2015.

We help organizations with the DFARS 252.204-7012 compliance process:

•     Risk assessment - to determine compliance against underlying standards
•     Policies - to develop or modify of policies to embed new requirements
•     Procedures - to develop incident response plans and procedures for handling cybersecurity events
•     Recommendations - to identify any remaining gaps and make recommendations to remediate