Cybersecurity Compliance Clause Samples

Cybersecurity Compliance. The Vendor shall comply with all applicable requirements of the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012, "Safeguarding Covered Defense Information and Cyber Incident Reporting." The Vendor is obligated to provide adequate security for all covered defense information that is processed, stored, or transmitted on the Vendor's information systems. The Vendor must report cyber incidents that affect a covered contractor information system or the covered defense information residing therein, or that affect the Vendor's ability to perform requirements designated as operationally critical support. The Vendor shall also flow down this requirement to all subcontractors to ensure full compliance throughout the supply chain.

Cybersecurity Compliance. Seller has implemented controls, policies, procedures, and technical safeguards to protect the security, integrity, operation, and redundancy of the Facility and Purchased Assets consistent with industry standards and practices, including the Critical Infrastructure Protection Reliability Standards set forth by the North American Electric Reliability Corporation. Seller is in compliance in all material respects with all applicable Laws, Orders, contractual obligations, and internal and published corporate policies and procedures concerning the security of the Facility and the Purchased Assets. There have been no material disruptions, security breaches, unauthorized access, unauthorized disclosure, or other compromise of information, the Facility, its operations or the Purchased Assets.