Code of Federal Regulations · Section

§ 1239.7000 — 1239.7000 Scope Of Subpart

48 C.F.R. § 1239.7000

View:

(a) This subpart applies to contracts and subcontracts requiring contractors and subcontractors to safeguard DOT sensitive data that resides in or transits through covered contractor information systems by applying specified network security requirements. It also requires reporting of cyber incidents.

(b) This subpart does not abrogate any other requirements regarding contractor physical, personnel, information, technical, or general administrative security operations governing the protection of unclassified information, nor does it affect requirements of the National Industrial Security Program.

48 C.F.R. § 1239.7001

Authorizing Statute

General authority
41 U.S.C. § 1121
Departmental regulations
5 U.S.C. § 301
Chief Acquisition Officers and senior procurement executives
41 U.S.C. § 1702