Cyber Corner: We are all targets
June 22, 2018 --
As evidenced by the recent headlines, the Advanced Persistent Threat actors, particularly nation-state backed actors, continue to target contractors in the Aerospace and Defense supply chain. Per the Cyber DFARS clause (252.204-7012), to perform work under contracts with the U.S. Department of Defense (DOD) involving Covered Defense Information on contractor IT systems, DOD contractors must have a documented System Security Plan and Plans of Action with Milestones demonstrating their compliance to the NIST SP 800-171 (r1) safeguarding requirements. Contractors are also subject to incident reporting requirements.
Do you understand your cybersecurity obligations – to the U.S. DOD and to Lockheed Martin? Review our cybersecurity site (recently refreshed) for information on Lockheed Martin’s expectations of our suppliers, and links to various helpful resources to assist in addressing DOD requirements and improving your company’s cybersecurity maturity.