Businesses that work with the US Department of Defense (DoD) and collect, process, transmit, or store controlled unclassified information (CUI) must comply with Defense Federal Acquisition Regulation Supplement (DFARS) standards. DFARS is specific to Defense contracts and aims to safeguard sensitive information from unauthorized personnel by having the https://www.upguard.com/blog/how-to-prevent-supply-chain-attacks acknowledge cybersecurity threats and https://www.upguard.com/blog/vulnerability-remediation. DFARS applies to any business that wishes to be awarded a DoD contract and handles CUI or covered defense information (CDI).

DoD contractors that fail to prove full compliance with DFARS will not have their defense contracts renewed.

Another difficult aspect of DFARS compliance is the requirement for https://www.upguard.com/blog/continuous-security-monitoring to ensure continued compliance with all 14 categories of security controls.

Related Articles