May 01, 2018

Dear Valued CAD Customer:

We are committed to working with our suppliers to keep sensitive information safe and secure from those who would use it to harm our global supply chain.

In 2016, the DoD amended the Defense Federal Acquisition Regulation Supplement (DFARS) to provide for the safeguarding of controlled unclassified information when residing on or transiting through a contractor’s internal information system or network. DFARS Clause 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting, requires contractors to implement National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations” to safeguard covered defense information that is processed or stored on their internal information system or network.

CAD IS IN FULL COMPLIANCE WITH
DFARS CLAUSE 252.204-7012

We understand what’s at stake and our role in protecting sensitive information from cybersecurity attacks. To manage this risk, CAD has developed a three pronged strategy with well-defined policies and procedures that will provide for Adequate Security, Cyber Incident Reporting, and Subcontractor Flowdown.

Safety is at the heart of what we do. We recognize the seriousness of cybersecurity threats necessitate we work together to minimize risk, protect sensitive information, and safeguard our global security.

Sincerely,

Cartridge Actuated Devices, Inc.