Call Us: 415.956.2828

DOD’s New Cyber Rules May Spur Contract Disputes

by Robert S. Metzger, Stephen L. Bacon and Alexandria Tindall Webb

Last year, the U.S. Department of Defense published an interim rule to establish new methods for assessing contractor implementation of cybersecurity requirements.

The interim rule will require thousands of defense contractors to conduct at least a basic assessment of their compliance with the 110 security requirements specified by the National Institute of Standards and Technology Special Publication 800–171.

The interim rule will prompt potential contact disputes, as could involve terminations for default, payment reductions for noncompliance, challenges to DOD cybersecurity assessments and monetary claims.

Contractors now are receiving solicitations and contracts with new Defense Federal Acquisition Regulation Supplement clauses 252.204-7019 and 252.204- 7020, which implement the new cyber requirements. Contractors should recognize these potential areas of dispute.

To read this article, which explores these issues in-depth, please click here.

San Francisco, CA
  • Robert Dollar Building
    311 California Street, 10th Floor
    San Francisco, CA 94104-2695
  • Phone: 415.956.2828
  • Fax: 415.956.6457
Washington, DC
  • 1500 K Street, NW, Suite 800
    Washington DC 20005-1227
  • Phone: 202.777.8950
  • Fax: 202.347.8429