New DoD Cybersecurity Assessment Reporting Effective November 30
3:00PM - 4:00PM
A new DFARS cybersecurity interim rule requires defense contractors report NIST SP 800-171
assessment results using DoD Assessment Methodology beginning November 30, 2020. Defense
contractors that receive or create Controlled Unclassified Information (DFARS clause
252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting) have
been self-certifying that they have completed a self-assessment, system security plan, and plan
of actions and milestones to comply with the 110 controls of NIST SP 800-171. Now contractors
must begin reporting the results of that assessment using a DoD scoring methodology and
online reporting system (Supplier Performance Risk System (SPRS)). This is an interim step to
increase compliance while a third party audit system called Cybersecurity Maturity Model
Certification (CMMC) is rolled out over the next 5 years.
Scott Dawson, Core Business Solutions, and Elizabeth Adams, VT PTAC, will be the presenters
for the session and answering questions about the new rule. This webinar is presented by VMEC and the New England Regional Defense Industry Collaborative (NERDIC).
About the New England Regional Defense Industry Collaboration (NERDIC) NERDIC is a partnership of the state economic development organizations of Connecticut, Maine, Massachusetts, New Hampshire, Rhode Island, and Vermont, working to support Small and Medium-Sized Enterprises (SMEs) that provide parts and assemblies to Tier One providers working with the U.S. Department of Defense. NERDIC has financial support from the Office of Economic Adjustment (OEA), US Department of Defense (DoD). The content reflects the views of the New England Collaborative and does not necessarily reflect the views of the Office of Economic Adjustment, the U.S. Department of Defense, or the participating states.
There is no cost to attend this webinar but pre-registration is required.