Common use of Cyber incident reporting requirement Clause in Contracts

Cyber incident reporting requirement. (1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor’s ability to perform the requirements of the contract that are designated as operationally critical support, the Contractor shall— (i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor’s network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor’s ability to provide operationally critical support; and (ii) Rapidly report cyber incidents to DoD at xxxx://xxxxxx.xxx.xxx. (2)

Cyber incident reporting requirement. (1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor’s ability to perform the requirements of the contract that are designated as operationally critical support, the Contractor shall— (i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor’s network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor’s ability to provide operationally critical support; and (ii) Rapidly report cyber incidents to DoD at xxxx://xxxxxx.xxx.xxx. (2)CONTINUED ON NEXT PAGE

Cyber incident reporting requirement. (1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor’s ability to perform the requirements of the contract that are designated as operationally critical support, the Contractor shall— (i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor’s network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor’s ability to provide operationally critical support; and (ii) Rapidly report cyber incidents to DoD at xxxx://xxxxxx.xxx.xxxCONTINUED ON NEXT PAGE CONTINUATION SHEET REFERENCE NO. (2)OF DOCUMENT BEING CONTINUED: SPE3S1-16-R-0012 PAGE 44 OF 112 PAGES

Cyber incident reporting requirement. (1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor’s 's ability to perform the requirements of the contract that are designated as operationally critical support, the Contractor shall— shall -- (i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor’s 's network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor’s 's ability to provide operationally critical support; and (ii) Rapidly report cyber incidents to DoD at xxxx://xxxxxx.xxx.xxx. (2)

Cyber incident reporting requirement. (1) When the Contractor discovers a cyber incident that affects a covered contractor information system or the covered defense information residing therein, or that affects the contractor’s ability to abilityto perform the requirements of the contract that are designated as operationally critical operationallycritical support, the Contractor shall— (i) Conduct a review for evidence of compromise of covered defense information, including, but not limited to, identifying compromised computers, servers, specific data, and user accounts. This review shall also include analyzing covered contractor information system(s) that were part of the cyber incident, as well as other information systems on the Contractor’s network(s), that may have been accessed as a result of the incident in order to identify compromised covered defense information, or that affect the Contractor’s ability to abilityto provide operationally critical operationallycritical support; and (ii) Rapidly report Rapidlyreport cyber incidents to DoD at xxxx://xxxxxx.xxx.xxx. (2)