Proposed federal acquisition rulemakings provide details on plans for info-sharing, SBOM requirements

The federal government has unveiled upcoming cyber requirements for federal contractors with the release of two proposed acquisition rules under the 2021 cyber executive order, focused on information sharing and standardizing cyber rules for unclassified federal information systems.

“DoD, GSA, and NASA are proposing to amend the Federal Acquisition Regulation (FAR) to partially implement an Executive order on cyber threats and incident reporting and information sharing for Federal contractors and to implement related cybersecurity policies,” the first proposed rule...