HR. 1258In Committee
Improving Contractor Cybersecurity Act
Prohibits executive agencies from awarding IT contracts unless contractors maintain vulnerability disclosure policies and report certain software vulnerabilities to CISA
Plain-English overview
What this bill does
Prohibits executive agencies from awarding IT contracts unless contractors maintain vulnerability disclosure policies and report certain software vulnerabilities to CISA
Key points
- Require vulnerability reports to CISA
- Prohibit IT contracts without VDP
- Direct CISA database submissions
Current status
Where it stands
Status
In Committee
Latest action
2025-02-12 — Referred to the House Committee on Oversight and Government Reform.
Related context
Topics and policy areas
undefinedComputers and information technologyGovernment information and archivesGovernment Operations and PoliticsPublic contracts and procurement
