48 CFR § 204.7300 - 204.7300 Scope.
---
identifier: "/us/cfr/t48/s204.7300"
source: "ecfr"
legal_status: "authoritative_unofficial"
title: "48 CFR § 204.7300 - 204.7300 Scope."
title_number: 48
title_name: "Federal Acquisition Regulations System"
section_number: "204.7300"
section_name: "204.7300 Scope."
chapter_number: 2
chapter_name: "DEFENSE ACQUISITION REGULATIONS SYSTEM, DEPARTMENT OF DEFENSE"
subchapter_number: "A"
subchapter_name: "GENERAL"
part_number: "204"
part_name: "ADMINISTRATIVE AND INFORMATION MATTERS"
positive_law: false
currency: "2026-03-24"
last_updated: "2026-03-24"
format_version: "1.1.0"
generator: "[email protected]"
authority: "41 U.S.C. 1303 and 48 CFR chapter 1."
regulatory_source: "56 FR 36289, July 31, 1991, unless otherwise noted."
cfr_part: "204"
---
# 204.7300 204.7300 Scope.
(a) This subpart applies to contracts and subcontracts requiring contractors and subcontractors to safeguard covered defense information that resides in or transits through covered contractor information systems by applying specified network security requirements. It also requires reporting of cyber incidents.
(b) This subpart does not abrogate any other requirements regarding contractor physical, personnel, information, technical, or general administrative security operations governing the protection of unclassified information, nor does it affect requirements of the National Industrial Security Program.
[80 FR 51742, Aug. 26, 2015, as amended at 81 FR 72998, Oct. 21, 2016]