Senate FY 2025 NDAA Version Seeks Increased Cyber-Related Acquisition Authority for DOD Components

A Senate version of the National Defense Authorization Act for fiscal year 2025 would enable components of the Department of Defense to procure cyber products and services independently.

The Senate Armed Services Committee’s NDAA version seeks to amend the FY 2022 defense bill, which prohibits DOD components from purchasing cyber-related items without the approval of the department’s chief information officer, Federal News Network reported.

According to the bill, the products and services can be bought independently if the components prove that they have an urgent need for the cyber offerings or demonstrate that the acquisition will ensure product or service competition within the market.

Sen. Eric Schmitt, R-Mo., initiated the amendment, citing how the DOD’s CIO used its authority to create a one-size-fits-all approach, which caused serious cybersecurity concerns.

The proposed FY 2025 NDAA is now headed to the Senate floor after it was passed at the committee level with a vote of 22-3.