IMMEDIATE NOTICE TO ALL SUPPLIERS ON FEDERAL PROJECTS
December 18, 2017
Bowen Engineering Corporation has recently been notified of a key regulation affecting certain Federal ongoing and future Bowen Engineering Corporation projects and its sub-tier Subcontractors or Vendors. This key regulation has been issued by the Department of Defense concerning contractor requirements for safeguarding unclassified “controlled technical information” (CTI):
- Defense Federal Acquisition Regulation Supplement (“DFARS”) 252.204-7012 – This regulation requires implementation as soon as practicable, but no later than December 31, 2017, of National Institute of Standards and Technology (“NIST”) SP800-171, which includes cyber security controls for internal systems with Covered Defense Information (“CDI”).
Broadly, this regulation imposes two key requirements: (1) mandating specific cyber-security standards, protocols and controls within contractor computer systems; and (2) reporting (and subsequent investigation and analysis) of any cyber-security breach within 72-hours.
In the links below you will find more details about the DFAR and its requirements.
- NIST Special Publication 800-171r1: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
- DFARS 252.204-7012 Implementation Guidance
- DFARS 252.204-7012
It is our absolute goal to work with you as closely as possible to ensure that we collectively comply with this rule. We would like to thank you for your partnership with Bowen Engineering Corporation, and the invaluable services that you provide for the Service personnel that we all support. We are partners in success, and look forward to working together to ensure we continue to meet our customer’s expectations, and maintain the highest standards of business ethics, compliance and integrity.
Please direct any questions via email to firstname.lastname@example.org, and we will have someone respond to you as soon as possible.