NDAA: Stricter Cyber & AI Rules for Defense Contractors

U.S. federal lawmakers are advancing new security requirements for defense contractors and artificial intelligence. This comes through the annual defense policy bill. Both the House and Senate Armed Services Committees have moved forward with their versions of the fiscal year 2027 National Defense Authorization Act. Each bill authorizes $1.15 trillion for national defense. They also call for significant cybersecurity reforms. The Senate bill includes a grant program. This would help small businesses and nontraditional defense contractors with Cybersecurity Maturity Model Certification costs. It also directs the Pentagon to create a system for deploying agentic AI systems. The House version has its own CMMC provisions and AI directives. It tasks the Chief Digital and Artificial Intelligence Office with developing an "AI model rapid deployment framework." The House bill would also establish a system for reporting and tracking AI-related incidents. Both versions of the NDAA support a U.S.-Israel Defense Technology Cooperation Initiative. This aims to expand joint defense technology research. The bottom line: Defense contractors face stricter cybersecurity expectations and new AI security rules from the Pentagon.