The GSA announced that it plans to formalize the cybersecurity rules it lays out for contractors.
The regulations are the same ones that the agency already imposes on contractors, with some additions and deletions, but GSA intends to impose them through a federal regulatory process this year.
The agency will also give the public a chance to voice their opinion on the rules, according to its regulatory agenda published in the federal register.
Contractors must meet government security baselines on all their systems under the regulations, and they must alert GSA about any potentially compromising cyber incidents in a timely fashion.
Additional rules include ensuring that contractors hold onto images of potentially breached systems, and that their employees are properly trained on how to deal with cyber incidents.