The law firm DLA Piper is urging the Defense Department to revise its cyber-incident reporting rules for contractors, including recommending changes to core elements of the program such as deadlines, scope and the definition of data covered by the requirements. "The imposition of onerous government-specific cybersecurity requirements, combined with the Government's reluctance to grant waivers for systems that already maintain robust security controls, runs contrary" to federal acquisition principles that requirements be "consistent with customary commercial practice," according to comments...
