(a)
(1) the criteria and processes required under section 1323(a) of this title, including a threshold and requirements for sharing relevant information about such risks with all executive agencies and, as appropriate, with other Federal entities and non-Federal entities;
(2) an identification of existing authorities for addressing such risks;
(3) an identification and promulgation of best practices and procedures and available resources for executive agencies to assess and mitigate such risks;
(4) recommendations for any legislative, regulatory, or other policy changes to improve efforts to address such risks;
(5) recommendations for any legislative, regulatory, or other policy changes to incentivize the adoption of best practices for supply chain risk management by the private sector;
(6) an evaluation of the effect of implementing new policies or procedures on existing contracts and the procurement process;
(7) a plan for engaging with executive agencies, the private sector, and other nongovernmental stakeholders to address such risks;
(8) a plan for identification, assessment, mitigation, and vetting of supply chain risks from existing and prospective information and communications technology made available by executive agencies to other executive agencies through common contract solutions, shared services, acquisition vehicles, or other assisted acquisition services; and
(9) plans to strengthen the capacity of all executive agencies to conduct assessments of-
(A) the supply chain risk posed by the acquisition of covered articles; and
(B) compliance with the requirements of this subchapter.
(b)
(Added
The date of the enactment of the Federal Acquisition Supply Chain Security Act of 2018, referred to in subsec. (a), is the date of enactment of
Section effective 90 days after Dec. 21, 2018, and applicable to contracts that are awarded before, on, or after that date, see section 202(c) of
Title II of