GSA now requiring cybersecurity plans from IT contractors

January 9, 2012
Cyber Security, FedCyber Wire, Requirements
No Comment

As of Jan. 6 all prime- and sub- contractors providing the General Services Administration with information technology supplies, services or systems are required to submit an IT security plan outlining compliance with federal cybersecurity regulations.

Contractors must provide GSA access to facilities, installations, operations, documentation, databases, IT systems and devices, and personnel used in performance of the contract, “to the extent required, in GSA’s judgment,” for inspection or audit, according to a Jan. 6 final rule (.pdf) published in the Federal Register.

via Fierce Government IT, continued here.