View Rule

View EO 12866 Meetings Printer-Friendly Version     Download RIN Data in XML

FAR RIN: 9000-AO34 Publication ID: Fall 2023 
Title: Federal Acquisition Regulation (FAR); FAR Case 2021-017, Cyber Threat and Incident Reporting and Information Sharing 

This rule will authorize agencies to increase the sharing of information about cyber threats and incident information between Government and certain providers. In addition, this rule will require certain contractors to report cyber incidents to the Federal Government to facilitate effective cyber incident response and remediation. This rule is being issued pursuant to recommendations from the Office of Management and Budget and the Department of Homeland Security in accordance with sections 2(b), 2(c), 2(g)(i), and 8(b), of the Executive Order 14028 titled "Improving the Nation’s Cybersecurity.”

Agency: DOD/GSA/NASA (FAR)(FAR)  Priority: Section 3(f)(1) Significant 
RIN Status: Previously published in the Unified Agenda Agenda Stage of Rulemaking: Proposed Rule Stage 
Major: Yes  Unfunded Mandates: No 
CFR Citation: 48 CFR 39    48 CFR 52   
Legal Authority: 40 U.S.C. 121(c)    10 U.S.C. ch. 4    10 U.S.C. ch. 137 legacy provisions    10 U.S.C. 3016    51 U.S.C. 20113   
Legal Deadline:  None
Action Date FR Cite
NPRM  10/03/2023  88 FR 68055   
NPRM Comment Period Extended  11/01/2023  88 FR 74970   
NPRM Comment Period End  12/04/2023 
NPRM Comment Period Extended End  02/02/2024 
Regulatory Flexibility Analysis Required: Yes  Government Levels Affected: Federal 
Small Entities Affected: Businesses  Federalism: No 
Included in the Regulatory Plan: No 
RIN Information URL:   Public Comment URL:  
RIN Data Printed in the FR: Yes 
Agency Contact:
Marissa Ryba
Procurement Analyst
1800 F Street, NW,
Washington, DC 20405
Phone:314 586-1280