CYBER SECURITY REQUIREMENTS. The cyber security requirements applicable to this Contract are set out in this Annex. Section A (Cyber Security Requirements) includes the Purchaser’s requirements in connection with cyber security [and Section B (Cyber Implementation Plan) sets out further details on how the Service Provider will meet such requirements]. Guidance notes: The Purchaser should retain the reference to Section B above if: the Cyber Security Procurement Support Tool (CSPST) has been used in connection with this Contract; and the Service Provider and the Purchaser have agreed a Cyber Implementation Plan in conjunction with the SAQ report generated by the CSPST.
CYBER SECURITY REQUIREMENTS. The cyber security requirements applicable to the Framework Agreement are set out in this Annex. Section A (Cyber Security Requirements) includes the Authority’s requirements in connection with cyber security [and Section B (Cyber Implementation Plan) sets out further details on how the Contractor will meet such requirements].
CYBER SECURITY REQUIREMENTS. In addition to mandatory cyber security flowdown requirements, the following additional provisions apply.
CYBER SECURITY REQUIREMENTS. (a) In performing its obligations and exercising its rights under this Agreement, each Party warrants and represents to the other Party that it will maintain adequate administrative, technical, and physical measures, controls, tools, systems, policies and procedures in accordance with good cyber security industry practice and all Applicable Laws.
CYBER SECURITY REQUIREMENTS. Supplier:
CYBER SECURITY REQUIREMENTS. Contractor shall ensure all Information Security users are appropriately trained in accordance with SECNAVINST 5239.20, Department of the Navy Cyberspace Information Technology and Cybersecurity Workforce Management and Qualification, 10 February 2016, SECNAVINST 5239.3, Department of the Navy Cybersecurity Policy, 02 May 2016, and DoD Instruction 8510.01, Risk Management Framework (RMF) for DoD Information Technology (IT), 12 March 2014, to fulfill cybersecurity responsibilities before allowing contractors access to systems or networks.
CYBER SECURITY REQUIREMENTS. Seller shall provide Buyer a copy of any reports submitted to the Government in support of this Agreement or any Order pursuant to DFARS 252.204-7012, or other cyber security requirements such as NIST SP 800-171 in advance, to the extent practicable, but no later than immediately following such submission to the Government. Cyber DFARS must be flowed down to all suppliers / subcontractors who store, process and /or generate Covered Defense Information as part of contract performance. The following FAR clauses are incorporated by reference and is applicable to All Subcontracts 52.203-3 Gratuities 52.203-19 Prohibition on Requiring Certain Internal Confidentiality Agreements or Statements 52.204-25 Prohibition on Contracting for Certain Telecommunications and Video Surveillance Services or Equipment 52.219-8 Utilization of Small Business Concerns 52.222-21 Prohibition of Segregated Facilities 52.222-26 Equal Opportunity 52.222-50 Combating Trafficking in Persons 52.225-13 Restrictions on Certain Foreign Purchases 52.227-14 Rights in Data – General with Alternates II, III, and V (unless another data rights clause is identified as replacing this clause) 52.233-3 Protest After Award 52.244-6 Subcontracts for Commercial Items 252.203-7002 Requirement to Inform Employees of Whistleblower Rights 252.204-7000 Disclosure of Information 252.204-7004 Antiterrorism Awareness Training for Contractors (if Subcontract performance requires routine physical access to Federally-controlled facility or military installation) 252.209-7004 Subcontracting with Firms That Are Owned or Controlled by the Government of a Terrorist Country 252.223-7008 Prohibition of Hexavalent Chromium 252.225-7009 Restriction on Acquisition of Certain Articles Containing Specialty Metals (if work contains specialty metals) 252.225-7012 Preference for Certain Domestic Commodities 252.225-7048 Export Controlled Items 252.227-7013 Rights in Technical Data – Noncommercial Items (applies in lieu of FAR 52.227-14 unless another data rights clause is identified as replacing this clause; Alternate I applies if Subcontract involves vessel design) 252.227-7014 Rights in Noncommercial Computer Software and Noncommercial Computer Software Documentation (applies in lieu of FAR 52.227-14 unless another data rights clause is identified as replacing this clause) 252.227-7015 Technical Data – Commercial Items (applies if checked to technical data pertaining to commercial item, components, or processes developed excl...
CYBER SECURITY REQUIREMENTS. The cyber security requirements applicable to the Contract are set out in this Annex. Section A (Cyber Security Requirements) includes the Purchaser’s requirements in connection with cyber security Section A: Cyber Security Requirements Overview of requirements: Cyber risk profile • Low Certification requested for assurance purposes • Cyber Essentials or equivalent Purchaser’s risk management approach • Strict pass/fail
CYBER SECURITY REQUIREMENTS. The Supplier undertakes to:
