Helping GSA Schedule contractors understand their cyber risks to better protect their organization.
To identify current cyber vulnerabilities, a federal contractor might conduct an assessment guided by an independent security auditor and NIST framework (SP 800-171, SP 800-53, and NIST SP 800-37 Rev. 2), while others may conduct routine cyber employee training and acquire cyber liability insurance. These measures, and more, are now requirements to qualify for federal contracts, either as a prime contractor or as a subcontractor. Some of these laws and regulations are:
False Claims Act (FCA), 31 U.S. Code § 3729(a)
FY 2018 National Defense Authorization Act (NDAA)
Executive Order 13556, Controlled Unclassified Information
Executive Order 13800, Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure
Executive Order 13806, Assessing and Strengthening the Manufacturing and Defense Industrial Base and Supply Chain Resiliency of the United States
FAR 52.204-21, Basic Safeguarding of Covered Contractor Information Systems
DFARS 252.204-7012, Safeguarding Unclassified Controlled Technical Information
Winvale’s FC Cyber Risk Report was created as a compensatory security measure that can be an effective tool for protecting federal contractors and their subcontractors. According to the Ponemon Institute, 74% of an organization’s users will reuse the same login email and password across their online accounts. With this knowledge, cyber criminals and Nation State actors hack third-party web sites and identify passwords from one account that may easily lead to “hacking into” your company email and network. Our FC Cyber Risk Report helps federal contractors better understand stolen emails and passwords and can help protect their organization from cybercrime and espionage.
Contact us today to learn more about how Winvale’s FC Cyber Risk Report can help protect your organization.