Common use of Cyber Incident Reporting Clause in Contracts

Cyber Incident Reporting. Upon discovery of a cyber incident involving CUI or CTI, the performer shall take immediate steps to mitigate any further loss or compromise. The performer shall rapidly report the incident to DARPA and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable DARPA to assess the situation and provide feedback to the performer regarding further reporting and potential mitigation actions. The performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable DARPA to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by DARPA and to provide to DARPA any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.

Cyber Incident Reporting. Upon discovery of a cyber incident involving CUI or CTI, the performer Performer shall take immediate steps to mitigate any further loss or compromise. The performer Performer shall rapidly report the incident to DARPA and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable DARPA to assess the situation and provide feedback to the performer Performer regarding further reporting and potential mitigation actions. The performer Performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable DARPA to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by DARPA and to provide to DARPA any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.

Cyber Incident Reporting. Upon discovery of a cyber incident involving DARPA CUI or CTI, the performer shall take immediate steps to mitigate any further loss or compromise. The performer shall rapidly report the incident to DARPA and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable DARPA to assess the situation and provide feedback to the performer regarding further reporting and potential mitigation actions. The performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable DARPA to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by DARPA and to provide to DARPA any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.