Proposed rulemaking requiring federal contractors to report cyber incidents expected in February

Details on proposed changes to federal acquisition rules for cyber incident reporting and information sharing are expected in February 2022 as part of requirements in a May cyber executive order, according to the fall regulatory agenda from the three agencies responsible for government-wide procurement policy.

“DoD, GSA, and NASA are proposing to amend the Federal Acquisition Regulation (FAR) to increase the sharing of information about cyber threats and incident information between the Government and certain providers, pursuant to OMB recommendations,...