Overview

For DoD contractors, the threat landscape has never been greater than it is today. From hackers thousands of miles away to insider threats sitting right next to you, today’s cyber challenges are alive and well, creating immense challenges for the broader Defense Industrial Base (DIB) community.

With such threats, incidents will occur. Organizations will get breached. Data will get stolen. Lawsuits will unfold. It’s the nature of the beast as growing cyber espionage attacks and cyber criminal acts by nation states (Russia, North Korea, Iran, China, etc.) and rogue factions alike have proven yet again to have successfully penetrated security networks of defense contractors in North America in recent years.

Key to protecting your organization and mitigating, to the fullest extent possible, any damage done to your organization is having in place a well-defined, actionable, and executable incident response plan.

Arlington Security Portal

Get Access to 100 + NIST RMF security and privacy policies & procedures, programs, and plan templates.

Learn More

Reporting Requirements

Per 252.204-7012 Safeguarding Covered Defense Information and Cyber Incident Reporting, requires defense contractors to "Rapidly" report cyber incidents to the DoD at the Defense Industrial Base (DIB)Cybersecurity Portal. “Rapidly” means within 72 hours of discovery of any cyber incident.

Key Elements of a Successful Incident Response Plan

Developing a well-designed, actionable, and results-driven incident response plan for DoD contractors requires a thorough discussion, implementation - and execution - regarding the following measures:

Preparation
Detection
Initial Response and Containment
Security Analysis | Recovery and Repair
Communication
Post Incident Activities and Awareness
Monitoring
Reporting of Suspected Incidents
Training
Testing

How to Get Started

Start by downloading our incident response plan toolkit, along with additional NIST RMF information security and privacy policies and procedures at the Arlington Security Portal (ASP).

Arlington Can Help

We have years of experience working within the broader federal agency apparatus in helping federal contractors develop high-quality, well-written, policies and procedures and additional NIST RMF information security and privacy materials. Our NIST RMF information security and privacy policies, procedures, programs, and plans have been used by thousands of federal contractors in helping organizations develop customized documentation for their growing security and compliance needs.