On December 30, 2015, the U.S. Department of Defense issued a new interim rule about implementing a previously issued interim rule about cyber security. The new interim rule gives government contractors and subcontractors more time to implement security requirements.
On August 26, 2015, the U.S. Department of Defense (DoD) issued an interim rule that affects almost all government contractors. The interim rule requires government contractors to report “cyber incidents” that result in real or actual adverse effects on contractor information systems. The rule went into effect immediately.