contractor information system | Georgia Tech Procurement Assistance Center

A broad coalition of 14 organizations representing state contractors and issue advocacy groups released an open letter last week opposing legislation that has cropped up in over 30 state legislatures that, if passed, would require government contractors to purchase and install monitoring software.

While varying somewhat from state-to-state, the bills typically require the software to take very specific actions, such as screenshots of all “state-funded activity at least once every three (3) minutes” and logging of “keystroke and mouse event frequency.” The legislation also demands contractors store that data for years to come.

The groups that signed onto the letter represent contractors in wide-ranging professions, including accountants, technologists and engineers, as well as the health industry and an association representing state legislators. In the letter, they state that the requirements in the bills carry “significant” privacy and data security risks.

“At a time when most states and businesses have worked together to implement stronger data protection standards, this legislation would undermine existing progress, raise costs, and needlessly expose public and private information to new threat vectors,” they wrote.

Keep reading this article at: https://www.nextgov.com/policy/2019/03/contractors-and-advocacy-groups-push-back-state-efforts-mandate-surveillance-software/155818/

A new final rule four years in the making will amend the Federal Acquisition Regulations, or FAR, with new sections on the basic safeguarding of contractor information systems.

The rule, published on May 16, 2016 in the Federal Register and issued by the Defense Department, General Services Administration and NASA, will add a subpart and contract clause on contractor systems that process, store or transmit federal contract information, and calls on contractors to apply a minimum of 15 security control requirements.

This type of information is not intended for public release and excludes information that the government provides to the public or that is related to processing payments.

The focus of the rule is on a basic level of safeguarding, and contractors still have to comply with safeguarding requirements for protecting controlled unclassified information, or CUI. “Systems that contain classified information, or CUI, such as personally identifiable information, require more than the basic level of protection,” the rule stated.

Keep reading this article at: http://www.fiercegovernmentit.com/story/final-rule-beefs-mandates-contractor-information-systems-security/2016-05-17

Contractors and advocacy groups push back on states’ efforts to mandate surveillance software

Final rule beefs up mandates for contractor information systems security

Contracting News

GSA takes next step towards consolidating multiple award schedules

OIG report: SBA’s all small mentor-protégé program falling short

Say goodbye to FedBizOpps!

SBA adjusts monetary-based size standards for inflation

DoD issues final rule restricting the use of LPTA procurements

Contracting Tips

The Navy gets tough on DFARS cybersecurity compliance

Wait! Wait! Don’t sign that!

Protégé subcontract revenues from mentor hold no basis for economic dependence

Are more FCA cases against small businesses on the horizon?

Big changes to the Buy American Act are coming—will they matter?

GTPAC News

SBA hosting access to capital forum Sept. 16th

Recent DoD contract awards (Aug. 15 – 28)

Georgia National Guard hosting Vendor Expo Day Nov. 14, 2019

GTPAC participates at National MBE Manufacturers Summit

Recent DoD contract awards (Aug. 6-14)

Georgia Tech News

President Cabrera’s First Week

Research, sponsored activity awards top $1 billion at Georgia Tech

Georgia Tech’s economic impact on Atlanta clocks in at $3.3B in 2018

Georgia Tech aerospace engineering graduate James McConville sworn in as Army’s top officer

Georgia Tech: A driver of economic development