On January 23, 2014, the Department of Defense and General Services Administration issued a final report making recommendations for the development of cybersecurity standards in the acquisition and contracting process.  The report, entitled “Improving Cybersecurity and Resilience Through Acquisition,” seeks “to recommend how cyber risk management and acquisition process in the Federal government can be better aligned.”  Among other things, the report recommends that the federal government adopt baseline cybersecurity requirements as a condition of contract award and that contractors address cybersecurity issues through periodic training.

The report demonstrates the government’s heightened interest in cybersecurity issues and the need for contractors to stay on top of developments in cybersecurity standards and requirements.