Common use of Cyber Attacks Clause in Contracts

Cyber Attacks. ‌ 21.3.1. The Seller must take reasonable and prudent steps consistent with best industry practice to reduce the risk of Cyber Attack on the Digital Systems of the Seller and any Subcontractor. 21.3.2. If requested by DTA’s, the Seller must provide details of the security measures put in place by the Seller and any Subcontractors to reduce the risk of Cyber Attack on the Digital Systems of DTA, Buyers, the Seller and any Subcontractor. 21.3.3. If the Seller becomes aware of a Cyber Attack on the Digital Systems of the Seller or any Subcontractor, the Seller must immediately: a. contact the DTA Representative (by phone or email, whichever is fastest), providing full details of the Cyber Attack; and b. if required by law or if directed by DTA, advise CERT Australia and/or the Australian Cyber Security Centre. 21.3.4. If requested by DTA, the Seller must, within 10 Business Days, prepare and provide to DTA for approval a cyber security plan. The cyber security plan must provide details of the security measures put in place by the Seller and any Subcontractors to reduce the risk of Cyber Attack on their Digital Systems.