A critical part of delivering mission success to our programs and customers is managing and mitigating inherent risks. To do this, Lockheed Martin is establishing several mechanisms to identify a set of initial indications of cyber security readiness. Our acquisition procedures now require the use of these cyber security risk indicators when issuing a Proprietary Information/Non-Disclosure Agreement (PIA/NDA). They are also required for solicitations where sensitive information will be shared with a supplier. This updated requirement will help us determine true risk to sensitive information when working with suppliers. These indicators will also help us determine if the risk is acceptable or if additional protection requirements are needed.
Please direct any Supplier Cyber Security questions to firstname.lastname@example.org