While Associations Cite Burden of Supply Chain Rules, Government Contractors Must Still Comply

Written on September 9, 2019

Federal contractors must bolster the security of their supply chains right now under the terms of a recently released interim rule.  This is the latest in a series of steps the federal government is taking to ensure good cyber hygiene and risk management.  While the specific new interim rule is intended to mainly target hardware from Huawei and ZTE, industry associations are concerned that the specific wording of the rule opens the door to extra burdens.  Particularly frustrating is the fact that the Office of Management and Budget sat on the rule for nearly a year, and then released it as an interim measure, meaning it is now effective, without seeking any advanced public comment.  While interested groups were able to comment on the rule after publication, the terms of the interim measure went into effect essentially upon their publication in the Federal Register.  The bottom line is that contractors providing all types of technology products, must ensure that their suppliers and subcontractors are providing them appropriate items.  Even if a customer says, “we want a lower price; we’re willing to take the risk,” don’t do it.  Organizations are responsible for providing safe and secure solutions that meet all applicable federal rules.  If you’re unsure about the federal rules, a little research will tell you.  Both you and your customer can get in trouble for not following the rules.  Make sure that your supply chain is secure. Click here to see the full story.

Back to Resources
Top