.png)
New FAR Rule IN Development for Vendors Handling CUI (Controlled Unclassified Information)
The Department of Defense (DOD) is collaborating with civilian agencies to introduce a new Federal Acquisition Regulation (FAR) rule
In today's rapidly evolving digital landscape, cybersecurity has never been more important for civilian contractors working with the federal government. The new Federal Acquisition Regulation (FAR) rule will soon impose more stringent cybersecurity requirements, similar to the Cybersecurity Maturity Model Certification (CMMC).
This rule will implement new requirements for vendors handling CUI (Controlled Unclassified Information.)
Why do Federal Contractors choose InterSec as a FAR Compliance partner?
InterSec brings a rigorous CMMI Services Level 3 mature service delivery process and ISO 9001 quality management to our compliance services.
InterSec is a CMMC-AB RPO with many seasoned RPs and assessors.
A prime contractor on the Virginia GENEDGE CMMC services BPA, so you can count on us as a vetted CMMC compliance service provider.
A dedicated team of security professionals is available to you throughout the compliance process.
Strategic partnerships and alliances with product vendors to provide turnkey and cost-effective solutions to meet CMMC compliance.
Multiple services and price models that can be easily customized to meet your organization's unique needs.
Experience of helping hundreds of Federal contractors throughout the U.S. navigate the complexities of DFARS, NIST 800-171, and even CMMC.
Our approach to FAR Compliance
Assess
- Establishing existing cybersecurity maturity
- Assess and align cybersecurity posture with new FAR rule and agency-specific regulations.
Defend
- Documentation and technical remediation
- Implement Controls
Secure
- Ongoing guidance
- Security Awareness Training to Employees
- Reporting
POA&M, and SPRS
Don't wait: Get Started Today and Stay Ahead of the Curve
Don't wait for the new regulations to come into effect. Contact our cybersecurity specialists now and start preparing your business for the future. Let us help you safeguard your organization's data, maintain compliance with government standards, and protect your interests in a rapidly evolving cyber landscape.
Case Studies
Unleashing cybersecurity success: How InterSec helps a manufacturing company meet CMMC requirements with ease
Gap analysis
A current state analysis of the client's organization security
Development of a remediation plan
Policies and procedures development
Technical remediation services, including asset management, multi-factor authentication, vulnerability scanning, email encryption, drive encryption, and virtual private network
Accelerating CMMC compliance: A Virginia-based acquisition support contractor's success story with InterSec
Our Clients
Testimonials
Here is what some of our real customers say about our Cybersecurity Services
InterSec has provided us with many cybersecurity servicesthat includes CMMC compliance and Penetration Testing. We see them as a partnerfor the long run.
P. Dharia
Their Pentest reports are very polished, well organized, and to the point. It helped us prioritize our resources to address the findings. We Would highly recommend InterSec.
G.Rajagopalan
InterSec has been providing MSSP services to us. They are very responsive and able to provide us support whenever we need. They went beyond the scope and helped us.
W. Dawkins
InterSec provided top-notch services for a comprehensive security assessment. With their help, we are implementing a high security standard to secure our mission.
Confidential
Frequently Asked Questions
Here are some questions Frequently Asked Questions related to new FAR rule in development
What is the new FAR rule, and how does it impact civilian contractors?
The new Federal Acquisition Regulation (FAR) rule is in development that aims to impose more stringent cybersecurity requirements for civilian contractors handling Controlled Unclassified Information (CUI), similar to the DoD's Cybersecurity Maturity Model Certification (CMMC). The rule will expand the current 15 basic cybersecurity requirements to 110 controls under NIST SP-800-171, ensuring a higher level of protection against cyber threats.
How do I know if my organization will need to comply with the new FAR rule?
If your organization is a civilian contractor working with the federal government and handles Controlled Unclassified Information, you will likely need to comply with the new FAR rule once it is implemented. It's important to stay informed of any developments and be prepared to adjust your cybersecurity practices accordingly.
What is the difference between the new FAR rule and CMMC?
While the new FAR rule and CMMC share similarities, such as the implementation of 110 controls under NIST SP-800-171, they differ in their scope and application. CMMC is specifically for DoD contractors, whereas the new FAR rule applies to civilian contractors working with civilian agencies.
Will the new FAR rule require third-party assessments like CMMC?
It is not yet clear if the new FAR rule will require third-party assessments, like CMMC, or if self-attestation will be permitted. Keep an eye on updates regarding the rulemaking process to understand how assessment requirements may evolve.
How can my organization prepare for the new FAR rule?
Begin by evaluating your current cybersecurity posture, identify any gaps or areas for improvement, and develop a plan to address those issues. Consider working with cybersecurity experts, like our team, to help guide you through the process and ensure your organization meets the necessary requirements.
How long does it take to achieve compliance with the new FAR rule?
The time it takes to achieve compliance will vary depending on your organization's current cybersecurity posture and the complexity of the requirements. Working with a knowledgeable cybersecurity partner can help streamline the process and ensure a timely path to compliance.
Will my organization need to maintain compliance with the new FAR rule even after the initial implementation?
Yes, maintaining compliance with the new FAR rule will be an ongoing process as cybersecurity threats and requirements continue to evolve. Regular monitoring, updates, and employee training will be essential in keeping your organization compliant and secure.
About InterSec
InterSec Inc., a Virginia corporation founded in 2013, is a one-stop cybersecurity service provider to small and medium-sized businesses.
As one of the boutique cybersecurity providers, InterSec employs continuous cyber innovation, sophisticated tradecraft, and top talent to deliver results.
Our diverse clients span Commercial, State, and Federal agencies. Our deep cyber and industry expertise is earned through hands-on experience, from Cybersecurity Program setup to Operational Security.
Our cyber security services meet mission-critical objectives in a secure and compliant manner.
We bring CMMI Level 3 and ISO 9001 mature and quality processes to CMMC service delivery. Our CMMC accelerators and white-glove services are field tested so it helps you become CMMC compliant on-time and on-budget.
Our deep engagement with the DoD, CMMC-AB, nationwide PTACs, MEPs, industry groups, partners, and vendors uniquely positions us to know “what right looks like” to be CMMC Level compliant for DIBs as well as Federal Contractors in general.
Our bespoke solutions and services save your company valuable time, resources, and money in achieving CMMC compliance.
Request a free consultation
If you want to know more about FAR compliance, Fill this form and our experts will reach out to you.
