83 FR 1940 - Unified Agenda of Federal Regulatory and Deregulatory Actions

GENERAL SERVICES ADMINISTRATION

Federal Register Volume 83, Issue 9 (January 12, 2018)

Page Range		1940-1942
FR Document		2017-28236

We are publishing our fall 2017 regulatory agenda pursuant to Executive Order 12866 ``Regulatory Planning and Review,'' 58 FR 51735 (1993), with particular adherence to E.O. 13771, ``Reducing Regulation and Controlling Costs,'' 82 FR 9339 (2017), E.O. 13777, ``Enforcing the Regulatory Reform Agenda,'' 82 FR 12285, and the Regulatory Flexibility Act, 5 U.S.C. 601 to 612. The purpose of publishing this agenda is to give notice of regulatory activity being undertaken by GSA in order to provide the public an opportunity to participate in the rulemaking process.

Federal Register, Volume 83 Issue 9 (Friday, January 12, 2018)

[Federal Register Volume 83, Number 9 (Friday, January 12, 2018)]
[Unknown Section]
[Pages 1940-1942]
From the Federal Register Online  [www.thefederalregister.org]
[FR Doc No: 2017-28236]



[[Page 1939]]

Vol. 83

Friday,

No. 9

January 12, 2018

Part XVII





General Services Administration





-----------------------------------------------------------------------





Semiannual Regulatory Agenda

Federal Register / Vol. 83 , No. 9 / Friday, January 12, 2018 / 
Unified Agenda

[[Page 1940]]


-----------------------------------------------------------------------

GENERAL SERVICES ADMINISTRATION

41 CFR Chs. 101, 102, 105, 300, 301, 302, 303, and 304

48 CFR Chapter 5


Unified Agenda of Federal Regulatory and Deregulatory Actions

AGENCY: General Services Administration (GSA).

ACTION: Semiannual Regulatory Agenda.

-----------------------------------------------------------------------

SUMMARY: We are publishing our fall 2017 regulatory agenda pursuant to 
Executive Order 12866 ``Regulatory Planning and Review,'' 58 FR 51735 
(1993), with particular adherence to E.O. 13771, ``Reducing Regulation 
and Controlling Costs,'' 82 FR 9339 (2017), E.O. 13777, ``Enforcing the 
Regulatory Reform Agenda,'' 82 FR 12285, and the Regulatory Flexibility 
Act, 5 U.S.C. 601 to 612. The purpose of publishing this agenda is to 
give notice of regulatory activity being undertaken by GSA in order to 
provide the public an opportunity to participate in the rulemaking 
process.

FOR FURTHER INFORMATION CONTACT: Please direct all general comments and 
inquiries to Francis Poe, Acting Division Director, Regulatory 
Secretariat Division at 202-501-4755. For comments on specific 
regulatory actions, please contact the person identified as the point 
of contact for that action.

SUPPLEMENTARY INFORMATION: The information provided in the Unified 
Agenda (Agenda) previews the rulemaking activities that we expect to 
undertake in the immediate future. The Agenda focuses primarily on 
those actions expected to result in publication of Advanced Notices of 
Proposed Rulemaking, Notices of Proposed Rulemaking, or Final Rules 
within the next 12 months.
    GSA is not a major regulatory agency outside of its work as a 
member of the Federal Acquisition Regulatory Council and does not have 
regulatory actions that are likely to have a significant economic 
impact on a substantial number of small entities.
    A fully searchable e-Agenda is available for viewing in its 
entirety at www.reginfo.gov. Agenda information is also available at 
www.regulations.gov, the government-wide website for submission of 
comments on proposed regulations. Our fall 2017 agenda follows.

FOR FURTHER INFORMATION CONTACT: Francis Poe, Acting Division Director, 
Regulatory Secretariat Division at (202) 501-4755.

    Dated: September 29, 2017.
Allison Fahrenkopf Brigati,
Associate Administrator, Office of Government-wide Policy.

          General Services Administration--Proposed Rule Stage
------------------------------------------------------------------------
                                                           Regulation
       Sequence No.                    Title             Identifier No.
------------------------------------------------------------------------
326.......................  General Services                   3090-AJ64
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR Case 2015-
                             G506, Construction
                             Manager as Constructor
                             Contracting.
327.......................  General Services                   3090-AJ84
                             Acquisition Regulation
                             (GSAR); GSAR Case 2016-
                             G511, Information and
                             Information Systems
                             Security.
328.......................  General Services                   3090-AJ85
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR Case 2016-
                             G515, Cyber Incident
                             Reporting.
------------------------------------------------------------------------


            General Services Administration--Final Rule Stage
------------------------------------------------------------------------
                                                           Regulation
       Sequence No.                    Title             Identifier No.
------------------------------------------------------------------------
329.......................  General Services                   3090-AJ63
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR Case 2015-
                             G503, Construction
                             Contract Administration.
330.......................  General Services                   3090-AJ67
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR Case 2015-
                             G512, Unenforceable
                             Commercial Supplier
                             Agreement Terms.
331.......................  General Services                   3090-AJ75
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR 2016-G506,
                             Federal Supply Schedule,
                             Order-Level Materials.
332.......................  General Services                   3090-AJ41
                             Administration
                             Acquisition Regulation
                             (GSAR); GSAR Case 2013-
                             G502, Federal Supply
                             Schedule Contracting
                             (Administrative Changes).
------------------------------------------------------------------------

GENERAL SERVICES ADMINISTRATION (GSA)

Office of Acquisition Policy

Proposed Rule Stage

326. General Services Administration Acquisition Regulation (GSAR); 
GSAR Case 2015-G506, Construction Manager as Constructor Contracting

    E.O. 13771 Designation: Other.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: GSA is proposing to amend the General Services 
Administration Acquisition Regulation (GSAR) to add new sections to 
GSAR part 536, Construction and Architect-Engineer Contracts, to 
incorporate contracting policies and procedures for different 
construction project delivery methods, focused on construction manager 
as constructor (CMc).
    The current FAR and GSAR do not have detailed coverage 
differentiating for various construction project delivery methods, 
although there is some guidance regarding source selection. GSA unique 
policies on CMc have been previously issued through other means. By 
incorporating these policies into the GSAR and differentiating for 
various construction methods, the GSAR will provide centralized 
guidance to ensure consistent application of construction project 
principles across the organization.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   12/00/17  .......................
NPRM Comment Period End.............   02/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Christina Mullins, Procurement Analyst, General 
Services Administration, 1800 F Street NW, Washington, DC 20405, Phone: 
202 969-4966, Email: christina.mullins@gsa.gov.
    RIN: 3090-AJ64

[[Page 1941]]

327. General Services Acquisition Regulation (GSAR); GSAR Case 2016-
G511, Information and Information Systems Security

    E.O. 13771 Designation: Other.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: GSA is proposing to update the General Services 
Administration Acquisition Regulation (GSAR) to update existing GSA 
cybersecurity requirements that did not previously go through the 
rulemaking process and integrate these updated requirements within the 
GSAR. Integrating these requirements into the GSAR will allow GSA to 
benefit from public comments received during the rulemaking process. 
The GSA cybersecurity requirements mandate contractors protect the 
confidentiality, integrity, and availability of unclassified GSA 
information and information systems from cybersecurity 
vulnerabilities,and threats in accordance with the Federal Information 
Security Modernization Act of 2014 and associated Federal cybersecurity 
requirements. This rule will require contracting officers to 
incorporate applicable GSA cybersecurity requirements within the 
statement of work to ensure compliance with Federal cybersecurity 
requirements and implement best practices for preventing cyber 
incidents. These GSA requirements mandate applicable controls and 
standards (e.g. U.S. National Institute of Standards and Technology, 
U.S. National Archive and Records Administration Controlled 
Unclassified Information standards).
    Cybersecurity requirements for internal contractor systems, 
external contractor systems, cloud systems, and mobile systems will be 
covered by this rule. It will also update existing GSAR provision 
552.239-70, Information Technology Security Plan and Security 
Authorization and GSAR clause 552.239-71, Security Requirements for 
Unclassified Information Technology Resources to only require the 
provision and clause when the contract will involve information or 
information systems connected to a GSA network.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   04/00/18  .......................
NPRM Comment Period End.............   06/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Michelle Bohm, Contract Specialist, General 
Services Administration, 100 S Independence Mall W Room: 9th Floor, 
Philadelphia, PA 19106-2320, Phone: 215 446-4705, Email: 
michelle.bohm@gsa.gov.
    RIN: 3090-AJ84

328. General Services Administration Acquisition Regulation (GSAR); 
GSAR Case 2016-G515, Cyber Incident Reporting

    E.O. 13771 Designation: Other.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: GSA is proposing to amend the General Services 
Administration Acquisition Regulation (GSAR) to update requirements for 
GSA contractors to report cyber incidents that could potentially affect 
GSA or its customer agencies. The rule updates the existing cyber 
incident reporting policy within GSA Order CIO 9297.2, GSA Information 
Breach Notification Policy that did not previously go through the 
rulemaking process and integrates these updated cyber incident 
reporting requirements into the GSAR. Integrating these requirements 
into the GSAR will allow GSA to benefit from public comments received 
during the rulemaking process. It instructs GSA contracting officers to 
include cyber incident reporting requirements within GSA contracts and 
orders placed against GSA multiple award contracts. The rule outlines 
the roles and responsibilities of the GSA contracting officer, 
contractors, and agencies ordering off of GSA's contracts in the 
reporting of a cyber incident.
    This rule establishes a contractor's responsibility to report any 
cyber incident where the confidentiality, integrity, or availability of 
GSA information or information systems are potentially compromised or 
where the confidentiality, integrity, or availability of information or 
information systems owned or managed by or on behalf of the U.S. 
Government is potentially compromised. It establishes an explicit 
timeframe for reporting cyber incidents, details the required elements 
of a cyber incident report, and provides the required Government's 
points of contact for submitting the cyber incident report.
    The rule also outlines the additional contractor requirements that 
may apply for any cyber incidents involving personally identifiable 
information. In addition, the rule clarifies both GSA and ordering 
agencies' authority to access contractor systems in the event of a 
cyber incident. It also establishes the role of GSA in the cyber 
incident reporting process and outlines how the primary response agency 
for a cyber incident is determined. In addition, it establishes the 
requirement for the contractor to preserve images of affected systems 
and ensure contractor employees receive appropriate training for 
reporting cyber incidents. The rule also outlines how contractor 
attributional/proprietary information provided as part of the cyber 
incident reporting process will be protected and used.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   08/00/18  .......................
NPRM Comment Period End.............   10/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Kevin Funk, Sustainability Program Specialist, 
General Services Administration, 20 N 8th Street, Room 08S23G, 
Philadelphia, PA 19107-3101, Phone: 215 446-4860, Email: 
kevin.funk@gsa.gov.
    RIN: 3090-AJ85

GENERAL SERVICES ADMINISTRATION (GSA)

Office of Acquisition Policy

Final Rule Stage

329. General Services Administration Acquisition Regulation (GSAR); 
GSAR Case 2015-G503, Construction Contract Administration

    E.O. 13771 Designation: Other.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: GSA is amending the General Services Administration 
Acquisition Regulation (GSAR) to revise sections of GSAR part 536, 
Construction and Architect-Engineer Contracts, and related parts, to 
maintain consistency with the Federal Acquisition Regulation (FAR) and 
to incorporate updated construction contract administration policies 
and procedures.
    The changes fall into five categories: (1) Incorporating existing 
Agency policy previously issued through other means, (2) reorganizing 
to better align with the FAR, (3) incorporating Agency unique clauses, 
(4) incorporating supplemental material, and (5) editing for clarity.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   09/09/16  81 FR 62434
NPRM Comment Period End.............   11/08/16  .......................
Final Rule..........................   04/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Christina Mullins, Procurement Analyst, General 
Services Administration, 1800 F Street NW, Washington, DC 20405, Phone: 
202 969-4966, Email: christina.mullins@gsa.gov.

[[Page 1942]]

    RIN: 3090-AJ63

330. General Services Administration Acquisition Regulation (GSAR); 
GSAR Case 2015-G512, Unenforceable Commercial Supplier Agreement Terms

    E.O. 13771 Designation: Deregulatory.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: GSA is amending the General Services Administration 
Acquisition Regulation (GSAR) to streamline the evaluation process to 
award contracts containing commercial supplier agreements. Government 
and industry often spend significant time negotiating elements common 
in almost every commercial supplier agreement where the terms conflict 
with Federal law. Past negotiations would always lead to deleting the 
terms from the contract, but only after several rounds of legal review 
by both parties. This case would explore methods for automatically 
nullifying these common terms out of contracts.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   05/31/16  81 FR 34302
NPRM Comment Period End.............   08/01/16  .......................
Final Rule..........................   01/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Janet Fry, Program Analyst, DOD/GSA/NASA (FAR), 
1800 F Street NW, Washington, DC 20405, Phone: 703 605-3167, Email: 
janet.fry@gsa.gov.
    RIN: 3090-AJ67

331. General Services Administration Acquisition Regulation (GSAR); 
GSAR 2016-G506, Federal Supply Schedule, Order-Level Materials

    E.O. 13771 Designation: Deregulatory.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: The General Services Administration (GSA) is amending the 
General Services Administration Acquisition Regulation (GSAR) to 
clarify the authority to acquire order-level materials when placing a 
task order or establishing a Blanket Purchase Agreement (BPA) against a 
Federal Supply Schedule (FSS) contract. This proposed rule seeks to 
provide clear and comprehensive implementation of the ability to 
acquire order-level materials through the FSS program to create parity 
between FSS contracts and commercial indefinite-delivery/indefinite-
quantity (IDIQ) contracts, reduce the need to conduct less efficient 
procurement transactions, lower barriers of entry to the Federal 
marketplace, and make it easier to do business with the Federal 
Government.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   09/09/16  81 FR 62445
NPRM Comment Period End.............   11/08/16  .......................
Final Rule..........................   01/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Leah Price, Procurement Analyst, General Services 
Administration, 1800 F Street NW, Washington, DC 20405, Phone: 703 605-
2558, Email: leah.price@gsa.gov.
    RIN: 3090-AJ75

OFFICE OF GOVERNMENTWIDE POLICY

332. General Services Administration Acquisition Regulation (GSAR); 
GSAR Case 2013-G502, Federal Supply Schedule Contracting 
(Administrative Changes)

    E.O. 13771 Designation: Other.
    Legal Authority: 40 U.S.C. 121(c)
    Abstract: The General Services Administration (GSA) is amending the 
General Services Administration Acquisition Regulation (GSAR) to 
clarify and update the contracting by negotiation GSAR section and 
incorporate existing Federal Supply Schedule Contracting policies and 
procedures, and corresponding provisions and clauses.
    Timetable:

------------------------------------------------------------------------
               Action                    Date            FR Cite
------------------------------------------------------------------------
NPRM................................   09/10/14  79 FR 54126
NPRM Comment Period End.............   11/10/14  .......................
Final Rule..........................   03/00/18  .......................
------------------------------------------------------------------------

    Regulatory Flexibility Analysis Required: Yes.
    Agency Contact: Dana L. Munson, Procurement Analyst, General 
Services Administration, 1800 F Street NW, Washington, DC 20405, Phone: 
202 357-9652, Email: dana.munson@gsa.gov.
    RIN: 3090-AJ41

[FR Doc. 2017-28236 Filed 1-11-18; 8:45 am]
 BILLING CODE 6820-34-P

1940 Federal Register / Vol. 83, No. 9 / Friday, January 12, 2018 / Unified Agenda

GENERAL SERVICES agenda is to give notice of regulatory GSA is not a major regulatory agency
ADMINISTRATION activity being undertaken by GSA in outside of its work as a member of the
order to provide the public an Federal Acquisition Regulatory Council
41 CFR Chs. 101, 102, 105, 300, 301, opportunity to participate in the and does not have regulatory actions
302, 303, and 304 rulemaking process. that are likely to have a significant
FOR FURTHER INFORMATION CONTACT: economic impact on a substantial
48 CFR Chapter 5 number of small entities.
Please direct all general comments and
Unified Agenda of Federal Regulatory inquiries to Francis Poe, Acting Division A fully searchable e-Agenda is
and Deregulatory Actions Director, Regulatory Secretariat Division available for viewing in its entirety at
at 202–501–4755. For comments on www.reginfo.gov. Agenda information is
AGENCY: General Services specific regulatory actions, please also available at www.regulations.gov,
Administration (GSA). contact the person identified as the the government-wide website for
ACTION: Semiannual Regulatory Agenda. point of contact for that action. submission of comments on proposed
SUPPLEMENTARY INFORMATION: The regulations. Our fall 2017 agenda
SUMMARY: We are publishing our fall
information provided in the Unified follows.
2017 regulatory agenda pursuant to
Executive Order 12866 ‘‘Regulatory Agenda (Agenda) previews the FOR FURTHER INFORMATION CONTACT:
Planning and Review,’’ 58 FR 51735 rulemaking activities that we expect to Francis Poe, Acting Division Director,
(1993), with particular adherence to undertake in the immediate future. The Regulatory Secretariat Division at (202)
E.O. 13771, ‘‘Reducing Regulation and Agenda focuses primarily on those 501–4755.
Controlling Costs,’’ 82 FR 9339 (2017), actions expected to result in publication
E.O. 13777, ‘‘Enforcing the Regulatory of Advanced Notices of Proposed Dated: September 29, 2017.
Reform Agenda,’’ 82 FR 12285, and the Rulemaking, Notices of Proposed Allison Fahrenkopf Brigati,
Regulatory Flexibility Act, 5 U.S.C. 601 Rulemaking, or Final Rules within the Associate Administrator, Office of
to 612. The purpose of publishing this next 12 months. Government-wide Policy.

GENERAL SERVICES ADMINISTRATION—PROPOSED RULE STAGE
Regulation
Sequence No. Title Identifier No.

326 .................... General Services Administration Acquisition Regulation (GSAR); GSAR Case 2015–G506, Construction 3090–AJ64
Manager as Constructor Contracting.
327 .................... General Services Acquisition Regulation (GSAR); GSAR Case 2016–G511, Information and Information 3090–AJ84
Systems Security.
328 .................... General Services Administration Acquisition Regulation (GSAR); GSAR Case 2016–G515, Cyber Incident 3090–AJ85
Reporting.

GENERAL SERVICES ADMINISTRATION—FINAL RULE STAGE
Regulation
Sequence No. Title Identifier No.

329 .................... General Services Administration Acquisition Regulation (GSAR); GSAR Case 2015–G503, Construction 3090–AJ63
Contract Administration.
330 .................... General Services Administration Acquisition Regulation (GSAR); GSAR Case 2015–G512, Unenforceable 3090–AJ67
Commercial Supplier Agreement Terms.
331 .................... General Services Administration Acquisition Regulation (GSAR); GSAR 2016–G506, Federal Supply 3090–AJ75
Schedule, Order-Level Materials.
332 .................... General Services Administration Acquisition Regulation (GSAR); GSAR Case 2013–G502, Federal Supply 3090–AJ41
Schedule Contracting (Administrative Changes).

GENERAL SERVICES Contracts, to incorporate contracting project principles across the
ADMINISTRATION (GSA) policies and procedures for different organization.
construction project delivery methods, Timetable:
Office of Acquisition Policy
focused on construction manager as
Proposed Rule Stage constructor (CMc). Action Date FR Cite

326. General Services Administration The current FAR and GSAR do not NPRM .................. 12/00/17
Acquisition Regulation (GSAR); GSAR have detailed coverage differentiating NPRM Comment 02/00/18
Case 2015–G506, Construction Manager for various construction project delivery Period End.
methods, although there is some
sradovich on DSK3GMQ082PROD with PROPOSALS

as Constructor Contracting
guidance regarding source selection. Regulatory Flexibility Analysis
E.O. 13771 Designation: Other. GSA unique policies on CMc have been Required: Yes.
Legal Authority: 40 U.S.C. 121(c) previously issued through other means. Agency Contact: Christina Mullins,
Abstract: GSA is proposing to amend By incorporating these policies into the Procurement Analyst, General Services
the General Services Administration GSAR and differentiating for various Administration, 1800 F Street NW,
Acquisition Regulation (GSAR) to add construction methods, the GSAR will Washington, DC 20405, Phone: 202 969–
new sections to GSAR part 536, provide centralized guidance to ensure 4966, Email: christina.mullins@gsa.gov.
Construction and Architect-Engineer consistent application of construction RIN: 3090–AJ64

VerDate Sep<11>2014 19:45 Jan 11, 2018 Jkt 244001 PO 00000 Frm 00002 Fmt 4701 Sfmt 4702 E:\FR\FM\12JAP17.SGM 12JAP17

Federal Register / Vol. 83, No. 9 / Friday, January 12, 2018 / Unified Agenda 1941

327. General Services Acquisition PA 19106–2320, Phone: 215 446–4705, for reporting cyber incidents. The rule
Regulation (GSAR); GSAR Case 2016– Email: michelle.bohm@gsa.gov. also outlines how contractor
G511, Information and Information RIN: 3090–AJ84 attributional/proprietary information
Systems Security 328. General Services Administration provided as part of the cyber incident
Acquisition Regulation (GSAR); GSAR reporting process will be protected and
E.O. 13771 Designation: Other.
Case 2016–G515, Cyber Incident used.
Legal Authority: 40 U.S.C. 121(c) Timetable:
Abstract: GSA is proposing to update Reporting
the General Services Administration E.O. 13771 Designation: Other. Action Date FR Cite
Acquisition Regulation (GSAR) to Legal Authority: 40 U.S.C. 121(c)
update existing GSA cybersecurity Abstract: GSA is proposing to amend NPRM .................. 08/00/18
requirements that did not previously go the General Services Administration NPRM Comment 10/00/18
through the rulemaking process and Acquisition Regulation (GSAR) to Period End.
integrate these updated requirements update requirements for GSA
within the GSAR. Integrating these contractors to report cyber incidents Regulatory Flexibility Analysis
requirements into the GSAR will allow that could potentially affect GSA or its Required: Yes.
customer agencies. The rule updates the Agency Contact: Kevin Funk,
GSA to benefit from public comments
existing cyber incident reporting policy Sustainability Program Specialist,
received during the rulemaking process.
within GSA Order CIO 9297.2, GSA General Services Administration, 20 N
The GSA cybersecurity requirements
Information Breach Notification Policy 8th Street, Room 08S23G, Philadelphia,
mandate contractors protect the
that did not previously go through the PA 19107–3101, Phone: 215 446–4860,
confidentiality, integrity, and
rulemaking process and integrates these Email: kevin.funk@gsa.gov.
availability of unclassified GSA
updated cyber incident reporting RIN: 3090–AJ85
information and information systems
from cybersecurity vulnerabilities,and requirements into the GSAR. Integrating
threats in accordance with the Federal these requirements into the GSAR will
Information Security Modernization Act allow GSA to benefit from public GENERAL SERVICES
of 2014 and associated Federal comments received during the ADMINISTRATION (GSA)
cybersecurity requirements. This rule rulemaking process. It instructs GSA
contracting officers to include cyber Office of Acquisition Policy
will require contracting officers to
incorporate applicable GSA incident reporting requirements within Final Rule Stage
cybersecurity requirements within the GSA contracts and orders placed against
GSA multiple award contracts. The rule 329. General Services Administration
statement of work to ensure compliance Acquisition Regulation (GSAR); GSAR
with Federal cybersecurity requirements outlines the roles and responsibilities of
the GSA contracting officer, contractors, Case 2015–G503, Construction Contract
and implement best practices for Administration
preventing cyber incidents. These GSA and agencies ordering off of GSA’s
requirements mandate applicable contracts in the reporting of a cyber E.O. 13771 Designation: Other.
controls and standards (e.g. U.S. incident. Legal Authority: 40 U.S.C. 121(c)
National Institute of Standards and This rule establishes a contractor’s Abstract: GSA is amending the
Technology, U.S. National Archive and responsibility to report any cyber General Services Administration
Records Administration Controlled incident where the confidentiality, Acquisition Regulation (GSAR) to revise
Unclassified Information standards). integrity, or availability of GSA sections of GSAR part 536, Construction
information or information systems are and Architect-Engineer Contracts, and
Cybersecurity requirements for
potentially compromised or where the related parts, to maintain consistency
internal contractor systems, external
confidentiality, integrity, or availability with the Federal Acquisition Regulation
contractor systems, cloud systems, and
of information or information systems (FAR) and to incorporate updated
mobile systems will be covered by this
owned or managed by or on behalf of construction contract administration
rule. It will also update existing GSAR
the U.S. Government is potentially policies and procedures.
provision 552.239–70, Information
compromised. It establishes an explicit The changes fall into five categories:
Technology Security Plan and Security
timeframe for reporting cyber incidents, (1) Incorporating existing Agency policy
Authorization and GSAR clause
details the required elements of a cyber previously issued through other means,
552.239–71, Security Requirements for
incident report, and provides the (2) reorganizing to better align with the
Unclassified Information Technology
required Government’s points of contact FAR, (3) incorporating Agency unique
Resources to only require the provision
for submitting the cyber incident report. clauses, (4) incorporating supplemental
and clause when the contract will
The rule also outlines the additional material, and (5) editing for clarity.
involve information or information Timetable:
systems connected to a GSA network. contractor requirements that may apply
for any cyber incidents involving
Timetable: Action Date FR Cite
personally identifiable information. In
Action Date FR Cite addition, the rule clarifies both GSA and NPRM .................. 09/09/16 81 FR 62434
ordering agencies’ authority to access NPRM Comment 11/08/16
NPRM .................. 04/00/18 contractor systems in the event of a Period End.
NPRM Comment 06/00/18 cyber incident. It also establishes the
sradovich on DSK3GMQ082PROD with PROPOSALS

Final Rule ............ 04/00/18
Period End. role of GSA in the cyber incident
reporting process and outlines how the Regulatory Flexibility Analysis
Regulatory Flexibility Analysis primary response agency for a cyber Required: Yes.
Required: Yes. incident is determined. In addition, it Agency Contact: Christina Mullins,
Agency Contact: Michelle Bohm, establishes the requirement for the Procurement Analyst, General Services
Contract Specialist, General Services contractor to preserve images of affected Administration, 1800 F Street NW,
Administration, 100 S Independence systems and ensure contractor Washington, DC 20405, Phone: 202 969–
Mall W Room: 9th Floor, Philadelphia, employees receive appropriate training 4966, Email: christina.mullins@gsa.gov.

VerDate Sep<11>2014 19:45 Jan 11, 2018 Jkt 244001 PO 00000 Frm 00003 Fmt 4701 Sfmt 4702 E:\FR\FM\12JAP17.SGM 12JAP17

$1942 Federal Register / Vol. 83, No. 9 / Friday, January 12, 2018 / Unified Agenda RIN: 3090–AJ63 331. General Services Administration RIN: 3090–AJ75 Acquisition Regulation (GSAR); GSAR 330. General Services Administration 2016–G506, Federal Supply Schedule, Acquisition Regulation (GSAR); GSAR Order–Level Materials Case 2015–G512, Unenforceable OFFICE OF GOVERNMENTWIDE Commercial Supplier Agreement Terms E.O. 13771 Designation: Deregulatory. POLICY Legal Authority: 40 U.S.C. 121(c) E.O. 13771 Designation: Deregulatory. Abstract: The General Services 332. General Services Administration Legal Authority: 40 U.S.C. 121(c) Administration (GSA) is amending the Acquisition Regulation (GSAR); GSAR Abstract: GSA is amending the General Services Administration Case 2013–G502, Federal Supply General Services Administration Acquisition Regulation (GSAR) to Schedule Contracting (Administrative Acquisition Regulation (GSAR) to clarify the authority to acquire order- Changes) streamline the evaluation process to level materials when placing a task E.O. 13771 Designation: Other. award contracts containing commercial order or establishing a Blanket Purchase Legal Authority: 40 U.S.C. 121(c) supplier agreements. Government and Agreement (BPA) against a Federal Abstract: The General Services industry often spend significant time Supply Schedule (FSS) contract. This Administration (GSA) is amending the negotiating elements common in almost proposed rule seeks to provide clear and General Services Administration every commercial supplier agreement comprehensive implementation of the Acquisition Regulation (GSAR) to where the terms conflict with Federal ability to acquire order-level materials clarify and update the contracting by law. Past negotiations would always through the FSS program to create negotiation GSAR section and lead to deleting the terms from the parity between FSS contracts and incorporate existing Federal Supply contract, but only after several rounds of commercial indefinite-delivery/ Schedule Contracting policies and legal review by both parties. This case indefinite-quantity (IDIQ) contracts, procedures, and corresponding would explore methods for reduce the need to conduct less efficient provisions and clauses. automatically nullifying these common procurement transactions, lower barriers Timetable: terms out of contracts. of entry to the Federal marketplace, and Timetable: make it easier to do business with the Action Date FR Cite Federal Government. Action Date FR Cite Timetable: NPRM .................. 09/10/14 79 FR 54126 NPRM Comment 11/10/14 NPRM .................. 05/31/16 81 FR 34302 Action Date FR Cite Period End. NPRM Comment 08/01/16 Final Rule ............ 03/00/18 Period End. NPRM .................. 09/09/16 81 FR 62445 Final Rule ............ 01/00/18 NPRM Comment 11/08/16 Regulatory Flexibility Analysis Period End. Required: Yes. Final Rule ............ 01/00/18 Regulatory Flexibility Analysis Agency Contact: Dana L. Munson, Required: Yes. Regulatory Flexibility Analysis Procurement Analyst, General Services Agency Contact: Janet Fry, Program Required: Yes. Administration, 1800 F Street NW, Analyst, DOD/GSA/NASA (FAR), 1800 Agency Contact: Leah Price, Washington, DC 20405, Phone: 202 357– F Street NW, Washington, DC 20405, Procurement Analyst, General Services 9652, Email: dana.munson@gsa.gov. Phone: 703 605–3167, Email: janet.fry@ Administration, 1800 F Street NW, RIN: 3090–AJ41 gsa.gov. Washington, DC 20405, Phone: 703 605– [FR Doc. 2017–28236 Filed 1–11–18; 8:45 am] RIN: 3090–AJ67 2558, Email: leah.price@gsa.gov. BILLING CODE 6820–34–P sradovich on DSK3GMQ082PROD with PROPOSALS VerDate Sep<11>2014 19:45 Jan 11, 2018 Jkt 244001 PO 00000 Frm 00004 Fmt 4701 Sfmt 9990 E:\FR\FM\12JAP17.SGM 12JAP17$

Document Created: 2018-10-26 09:50:50
Document Modified: 2018-10-26 09:50:50

Category		Regulatory Information
Collection		Federal Register
sudoc Class		AE 2.7: GS 4.107: AE 2.106:
Publisher		Office of the Federal Register, National Archives and Records Administration
Section		Unknown Section
Action		Semiannual Regulatory Agenda.
Contact		Please direct all general comments and inquiries to Francis Poe, Acting Division Director, Regulatory Secretariat Division at 202-501-4755. For comments on specific regulatory actions, please contact the person identified as the point of contact for that action.
FR Citation		83 FR 1940