Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025

This bill requires changes to government contracting rules for cybersecurity vulnerabilities. It applies to contractors with contracts worth $250,000 or more, or those who handle federal computer systems. The Office of Management and Budget must review current rules and suggest new requirements for how contractors should set up programs to find and report security weaknesses in their computer systems. The Federal Acquisition Regulation Council must then update the official contracting rules based on these suggestions, and the Department of Defense must do the same for its own contracting rules.

Your Vote