As recent malware, ransomware and distributed denial of service attacks have made clear, the cyber threats posed to governments and commercial entities are real and growing. Critical infrastructure such as power plants, airports and communication systems are vulnerable to attacks on the cyber battlefield, as are banks, manufacturers, and law firms, among other commercial entities. In an attempt to address these risks, the U.S. government is imposing heightened cyber-security requirements on contractors, some of which are summarized below. But, in light of the growing cyber threats posed by nation states, subnational groups and bored teenagers, even companies that are not subject to these new requirements should evaluate the sufficiency of their current cyber security protocols and consider taking steps such as the simplified four-step "starter plan" – train, maintain, test and repeat – laid out below to address vulnerabilities.
To continue reading the content in this article on the firm's Government Contracts & International Trade blog, please click here to view the post.
Bass, Berry & Sims' Government Contracts & International Trade blog features news, commentary and insight on the demanding and ever-changing regulatory environment of contracting with federal, state and local governments, and international trade issues when conducting a global business.