State pushing for IT contractors to monitor security

Subscribe Now!

Table of Contents

Business
BPM
CXOs
Columns
Columnists
Defense
E-Government
Elections 2008
Enterprise Architecture
Funding
Homeland Security
Health IT
IPv6
LOB
Management
Procurement
Privacy
Policy
Program Management
State and Local
Security
Technology
Telework
Training and Certification
Workforce

More Topics

Home
Letters to the Editor
Current Issue/Download
Print/Online Archives
Editorial Calendar

Communications for Continuity Operations

Oracle Resource Center

NEW - Data Center Virtualization
NEW - Air Force ELSG Contract Guide
NEW - Security Management
NEW - DOD and Security Guide
Networx Contract Guide
SEWP IV Contract Guide
Priority Report: Virtualization
NEW - CHESS formerly ASCP
New - SATCOM II

More >>

Tech Watch: Ruggedized Computing GWAC Buyers Guide GSA Agency Report Green Solutions Guide Government Leadership Survey Report: Information Sharing DISA IT Strategy & Vision Emergency Preparedness Report Report: Green Computing PEO EIS Guidebook Content Library

Latest News

The most recent management and policy news from FCW.com

Navy details NMCI follow-on plan

OMB gives Networx a boost

Gustav triggers COOP

Spy agencies prepare for administration change

CBP installs RFID readers on border

The latest technology news from GCN.com

Regional communications system takes shape

Glitch tarnishes Chrome browser

Looking to balance Internet scale

Economic indicators for security industry are looking up

Data storage compromise

The latest industry news from WashingtonTechnology.com

Army wants to recruit small businesses for FCS

DOD activity seeks disaster recovery support

CTG to tackle Alaska information security work

Exalt to aid DOD with transition planning

Battelle wins pair of Air Force chem-bio deals

State pushing for IT contractors to monitor security

By Ben Bain
Published on June 26, 2007

Comment

Click here to comment on this article

Related story links

Rule Proposal

Shortcomings plague State's IT security

Newsletters

You might also be interested in these FCW newsletters:

Daily

To learn more, click here.

The State Department has proposed a new rule that would make information technology contractors take more responsibility for the security of unclassified information.

Under the new requirement, IT contractors would be responsible for the security of systems that access the department's mission-related information. The proposed rule also mandates that all winning contractors develop an IT security plan and submit it within 30 days of a contract award.

The new provisions are meant to ensure that the Department of State Acquisition Regulation meets the standards outlined in the Federal Acquisition Regulation, which was amended in 2005 to meet the requirements of the Federal Information Security Management Act of 2002.

Under State’s proposal, contractors would also need to receive the IT certification and accreditation required by National Institute of Standards and Technology guidelines and the relevant executive branch directives and congressional acts.

Vendors would also be responsible for monitoring the security of their projects, beyond State’s monitoring programs. Furthermore, they would need to provide yearly proof that their IT security plans remain valid.

State will be accepting comments on the proposal for 60 days beginning today.

Enterprise Architecture 2008 - Washington, DC
September 9 - September 10, 2008

Occupational Health & Safety Executive Summit - Arlington, VA
October 6 - October 7, 2008

First Name			State
Last Name			Zip
Title			Email