US Federal 2025-2026 Regular Session

US Federal House Bill HB872

Introduced
1/31/25  
Refer
1/31/25  

Caption

Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025This bill requires revisions to acquisition regulations related to information systems vulnerabilities for certain federal contractors. The revisions apply to contractors whose contract is at or above the simplified acquisition threshold ($250,000 in most cases) or that use, operate, manage, or maintain a federal information system on behalf of an agency. Under the bill, the Office of Management and Budget must review the Federal Acquisition Regulation (FAR) and recommend updated contract requirements and language for contractor vulnerability disclosure programs. (Such programs establish processes for identifying, reporting, and mitigating information system vulnerabilities discovered by security researchers, software developers, and others.) The recommendations must include requirements to ensure that such contractors implement vulnerability disclosure policies consistent with guidelines from the National Institute of Standards and Technology. The Federal Acquisition Regulation Council must review these recommendations and update the FAR as necessary to incorporate requirements for such contractors to receive information about potential security vulnerabilities in contractor information systems used in performance of contract.The Department of Defense (DOD) must conduct a similar review and update of regulations with respect to the DOD Supplement to the FAR.

Congress_id

119-HR-872

Policy_area

Government Operations and Politics

Introduced_date

2025-01-31

Companion Bills

No companion bills found.

Previously Filed As

US SB1899

Federal Contractor Cybersecurity Vulnerability Reduction Act of 2025

US SB2963

Fair Pay for Federal Contractors Act of 2025

US HB5657

Fair Pay for Federal Contractors Act of 2025

US SB2964

Emergency Relief for Federal Contractors Act of 2025

US HB5690

Emergency Relief for Federal Contractors Act of 2025

US S1060

Provides State information technology contracts will require use of software to document computer use by contractor.

US A929

Provides State information technology contracts will require use of software to document computer use by contractor.

US SF2306

Independent contractors and payors addition to the centralized work reporting system; payors to report independent contractors to the centralized work reporting system requirement

US HB1380

To Transfer The Review Of Planning And Technical Requirements For Information Technology Contracts From The Office Of Intergovernmental Services To The Division Of Information Systems.

US HB6301

VIVAS Act Violence Impact and Vulnerabilities Assessment Study Act

Similar Bills

CA AB1885

Public contracts: retention proceeds.

TN SB0937

AN ACT to amend Tennessee Code Annotated, Title 4; Title 8; Title 9, Chapter 8; Title 29, Chapter 20 and Title 49, relative to freedom of speech.

TN HB1270

AN ACT to amend Tennessee Code Annotated, Title 4; Title 8; Title 9, Chapter 8; Title 29, Chapter 20 and Title 49, relative to freedom of speech.

CA AB332

Employment: agricultural workers.

CA SB1174

Public contracts: Department of Transportation: bid preferences: employee stock ownership plans.

MI HB4384

State management: purchasing; awarding contracts to entities that donate or contribute to certain political candidates or committees; prohibit. Amends 1984 PA 431 (MCL 18.1101 - 18.1594) by adding sec. 264b.

CA AB2272

State contracting: subcontractors: prompt payment.

AR HB1468

To Amend Arkansas Law Concerning Claims Against Home Improvement Contractors, Residential Building Contractors, And Suppliers.