DoD is imposing an ever-increasing list of cybersecurity-related requirements on contractors. Although this current requirement will only apply to contractors establishing or maintaining computer networks for DoD, it is still something that is easily missed by many such contractors. On April 2, 2021 the US Department of Defense’s Office of the Undersecretary of Defense for Acquisition and Sustainment issued Class Deviation 2021-O0003. This class deviation announces the introduction of DFARS rule 252.239-7098, which prohibits contractors from establishing or maintaining a computer network for DoD unless that network is specifically configured to prohibit access to pornography websites. The DFARS clause will be incorporated into all solicitations, including solicitations for commercial items, and offerors (contractors) must represent that any networks they establish or maintain for DoD will meet this requirement.
Click to rate this post!