DoD Provides Cyber Security Grace Period For Contractors

Department of Defense (DoD) provides government contractors a grace period for compliance with key cybersecurity requirements.  While DoD contractors should appreciate the much needed breathing room the amended interim rule permits, they should avoid procrastination and use this time to align their practices - to the best of their ability - with NIST SP 800-171.  What's more, and in line with many of the NIST's standards, defense contractors also need to ensure they stay flexible.  As the interim rule reflects, this is by no means a "one and done" rule - contractors should expect, and be ready to adopt and adapt to, changes and additional DoD guidance as the NIST security controls find their way into common practice.  Change is a constant in the world of cybersecurity and for more information, visit