contractor information system | Georgia Tech Procurement Assistance Center

A broad coalition of 14 organizations representing state contractors and issue advocacy groups released an open letter last week opposing legislation that has cropped up in over 30 state legislatures that, if passed, would require government contractors to purchase and install monitoring software.

While varying somewhat from state-to-state, the bills typically require the software to take very specific actions, such as screenshots of all “state-funded activity at least once every three (3) minutes” and logging of “keystroke and mouse event frequency.” The legislation also demands contractors store that data for years to come.

The groups that signed onto the letter represent contractors in wide-ranging professions, including accountants, technologists and engineers, as well as the health industry and an association representing state legislators. In the letter, they state that the requirements in the bills carry “significant” privacy and data security risks.

“At a time when most states and businesses have worked together to implement stronger data protection standards, this legislation would undermine existing progress, raise costs, and needlessly expose public and private information to new threat vectors,” they wrote.

Keep reading this article at: https://www.nextgov.com/policy/2019/03/contractors-and-advocacy-groups-push-back-state-efforts-mandate-surveillance-software/155818/

A new final rule four years in the making will amend the Federal Acquisition Regulations, or FAR, with new sections on the basic safeguarding of contractor information systems.

The rule, published on May 16, 2016 in the Federal Register and issued by the Defense Department, General Services Administration and NASA, will add a subpart and contract clause on contractor systems that process, store or transmit federal contract information, and calls on contractors to apply a minimum of 15 security control requirements.

This type of information is not intended for public release and excludes information that the government provides to the public or that is related to processing payments.

The focus of the rule is on a basic level of safeguarding, and contractors still have to comply with safeguarding requirements for protecting controlled unclassified information, or CUI. “Systems that contain classified information, or CUI, such as personally identifiable information, require more than the basic level of protection,” the rule stated.

Keep reading this article at: http://www.fiercegovernmentit.com/story/final-rule-beefs-mandates-contractor-information-systems-security/2016-05-17

Contractors and advocacy groups push back on states’ efforts to mandate surveillance software

Final rule beefs up mandates for contractor information systems security

Contracting News

Weak links in the defense supply chain

Holding government contractors responsible for cybersecurity is trickier than it sounds

Defense dominates experiment in streamlined bidding for innovation

White House issues new guidance on category management

Contracting Tips

Renewed focus on contractor business system reviews

Subcontractor who failed to follow the FAR finds that ‘fair’ and ‘just’ are not synonymous

Keeping up with DoD cybersecurity compliance demands

5 things you should know about the ‘nonmanufacturer rule’

Preparing to bid in a new state

GTPAC News

Nuclear Regulatory Commission holding small business event in Atlanta on June 5th

Attend Augusta Government Contracting Day on April 22nd

GTPAC to host Cost/Price Proposal Workshop on April 24th

Georgia National Guard to hold vendor expo on May 2nd

Here are the Georgia businesses who won federal contracts in Mar. 2019

Georgia Tech News

Chris Downing, vice president and director of Enterprise Innovation Institute, announces retirement

Georgia Power announces new microgrid project with Georgia Tech

Current portfolio companies of Georgia Tech’s ATDC raise $114 million in investment capital in 2018

Georgia Tech develops safety app for social workers

Georgia Tech names new leadership for ATDC