Common use of Cyber Incident Reporting Clause in Contracts

Cyber Incident Reporting. Upon discovery of a cyber incident involving CUI or CTI, the performer shall take immediate steps to mitigate any further loss or compromise. The performer shall rapidly report the incident to Northrop Grumman and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable Northrop Grumman to assess the situation and provide feedback to the performer regarding further reporting and potential mitigation actions. The performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable Northrop Grumman to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by SDA consistent with Performer’s Government approved security systems and to provide to Northrop Grumman any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.

Cyber Incident Reporting. Upon discovery of a cyber incident involving CUI or CTI, the performer shall take immediate steps to mitigate any further loss or compromise. The performer shall rapidly report the incident to Northrop Grumman and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable Northrop Grumman to assess the situation and provide feedback to the performer regarding further reporting and potential mitigation actions. The performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable Northrop Grumman to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by SDA consistent with Performer’s Government approved security systems and to provide to Northrop Grumman any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.

Cyber Incident Reporting. Upon discovery of a cyber incident involving CUI or CTI, the performer shall take immediate steps to mitigate any further loss or compromise. The performer shall rapidly report the incident to Northrop Grumman and provide sufficient details of the event—including identification of detected and isolated malicious software—to enable Northrop Grumman to assess the situation and provide feedback to the performer regarding further reporting and potential mitigation actions. The performer shall preserve and protect images of all known affected information systems and all relevant monitoring/packet capture data for at least 90 days from reporting the cyber incident to enable Northrop Grumman to assess the cyber incident. The performer agrees to rapidly implement security measures as recommended by SDA Northrop Grumman consistent with Performer’s Government approved security systems and to provide to Northrop Grumman any additionally requested information to help the Parties resolve the cyber incident and to prevent future cyber incidents.