DoD contractors have been required by the 7012 DFARS contract clause to have “adequate security” in place by 1/1/18 relying upon the 110 NIST SP 800-171 safeguards.  Initially, DoD advised that companies could consider themselves to be in compliance if they prepared a System Security Plan (SSP) and Plan of Action and Milestones (POAM). These remain core requirements — but minimal compliance will not be enough. DoD is moving towards a more aggressive approach to assure that its contractors in fact have implemented adequate security measures.

Soon, DoD requiring activities, contracting officers and oversight personnel will be asking to review defense contractor SSPs and POAMS as part of the procurement process. We can expect DoD to establish means to assess contractor security – almost certainly relying upon the new NIST SP 800-171A “Assessing Security” guide.  Companies may find themselves ineligible for new procurements if their security is found inadequate. New solicitations will include assessed cyber security as an evaluation factor and therefore a discriminator in future contract awards.  What this means is that changing DoD practices will have significant impact on a company’s ability to win and perform work on Government contracts. There will be increased attention to security at all levels of the supply chain and we can expect the Government to hold Primes responsible to assure the compliance of their suppliers. These changes reflect an emerging recognition within the Pentagon, that adversaries continue to successfully exploit cyber vulnerabilities of the U.S. industrial base, and a new determination to take stronger measures to protect critical technologies. DoD leadership will seek to reward companies with superior security as well as enforce existing cybersecurity regulations.

In this webinar from the Cyber Collaboration Center, DFARS / NIST cybersecurity experts from eResilience are teaming up with leading industry analyst, author, and legal counsel Robert Metzger to provide updates on new DoD-wide initiatives, changing defense procurement policies, and what lies ahead for contractors in Government oversight and assessment. Topics to be covered include DoD’s newly announced “Deliver Uncompromised” initiative, how DoD is to value and assign priority rankings to the 110 NIST 800-171 security requirements; where to expect new cyber measures in solicitations and competitive selection; supply chain cyber risk management challenges; and the establishment of Security as a “Fourth Pillar” in defense acquisition equal in priority to Cost, Schedule and Performance. In this webinar, eResilience subject matter experts will discuss challenges facing defense contractors including the importance of supply-chain cyber risk management (SCRM), and Bob Metzger will share his insight on cyber and supply chain security trends.  Don’t miss this opportunity to learn from some of the industry’s top technical and legal experts.

Speaker: Robert Metzger

Bob Metzger is one of the top rated defense contract law experts in the country. Named a 2016 ” Federal 100 ” awardee, Federal Computer Week cited Bob for his “ability to integrate policy, regulation and technology.” Chambers USA (2018) ranks Bob among top government contracts lawyers and said that “[h]e is particularly noted for his expertise in cyber and supply chain security with clients regarding him as the ‘preeminent expert in cybersecurity regulations and how they affect government contractors.'” He was a member of the task force that produced the 2017 Defense Science Board Cyber Supply Chain Study. Bob is a frequent contributor to defense industry publications, and a consistent advocate for improvement of the nation’s cyber defenses.

Who Should Attend:

Defense Contractors & their Executives, Contract Managers, Program Managers, IT Managers & FSOs

Register

Safety standards differ slightly between organizations and industries, but the goals of safety professionals are ultimately the same: reducing the number of injuries, incidents, and environmental spills that occur on site. As pressures rise to do more with less, efficient health & safety protocols become increasingly important.

EHS reporting needs to do more than prove compliance: it must ensure machines are up and running full-time, keep employee training up to date, and help avoid the pitfalls of having to recruit and train part-time replacements if employees are injured on the job. This webinar will outline how data collection on iPhones and iPads in the field, combined with a cloud-based back office and KPI dashboards, will transform your EHS program into an all-around business support system.

Join us as we explore how health & safety data collection on iOS devices can help produce a safer, more compliant workplace.

Topics will include:

• The perks of collecting data on a mobile device over paper
• How sharing information digitally improves EHS compliance, workplace safety, and team efficiency
• The importance of accessible short- and long-term EHS reporting
• Back-office impacts of mobile solutions in the field
• Steps involved in taking your business from paper forms to digital forms
• Real-life impacts of mobile data collection and cloud integration
• Where your team can save time and money in the field

Speakers

Mark Scott, VP Marketing, ProntoForms

Mark Scott brings more than 20 years of marketing experience. He has developed and managed marketing strategies and projects for several companies and institutions, including Rolls Royce Aerospace and the Canadian Space Agency. Mark has written articles on the topic of Mobile Apps and the Cloud for Forbes Magazine, as well as white papers for smartphone companies and wireless carriers, including Apple and AT&T.

Sponsored by

Technical Details

This EHS Today webinar will be conducted using a slides-and-audio format.  After you complete your registration, you will receive a confirmation email with details for joining the webinar.

Register

By clicking above, I acknowledge and agree to Informa’s Terms of Service and to Informa’s use of my contact information to communicate with me about offerings by Informa, its brands, affiliates and/or third-party partners, consistent with Informa’s Privacy Policy. In addition, I understand that my personal information will be shared with any sponsor(s) of the resource, so they can contact me directly about their products or services. Please refer to the privacy policies of such sponsor(s) for more details on how your information will be used by them.