Government Contracts & Investigations

Category: Cyber, Data Security, and Privacy

DIB Take Note: SolarWinds Hack and DHS CISA Emergency Directive on Cyber Vulnerabilities Point to the Need to be Prepared for APTs

By

If you don’t know about SolarWinds, then you haven’t been reading the news for the past six months. Last October 2020, it was reported that a widely-used networking tool that helps companies in the public and private sectors manage their Information Technology (IT) portfolios – SolarWinds Orion product — had been compromised. Publicly, it hasRead More

Topics: Cyber, Data Security, and Privacy, Government Contracts, Supply Chain Risk Management

Susan Warshaw Ebner Quoted on New DOD Cybersecurity Rule in Law360

By

Government Contracts & Investigations Co-Chair Susan Warshaw Ebner recently discussed the impact of the new Department of Defense (DOD) rule that will apply to government contractors in an article by Law360. The interim rule, which was published on September 29 and goes into effect on November 30, 2020, requires that contractors at all tiers be assessed and certified as compliant withRead More

Topics: Cyber, Data Security, and Privacy

CMMC Advisory Board – The Good News First

By

The Cybersecurity Maturity Model Certification (CMMC) Advisory Board (CMMC AB) made a major announcement on September 16, 2020, announcing that it has trained an initial group of provisional assessors. As an earlier posting explains, the CMMC establishes cybersecurity controls for certification of government contractors from Level 1, the basic set of controls that all governmentRead More

Topics: Cyber, Data Security, and Privacy

And Still More Guidance Comes Out on Section 889 Implementation

By

The saga of what is prohibited and what is covered by an exception to the National Defense Authorization Act, FY 2019, Section 889 prohibition on the use or delivery of covered telecommunications and video surveillance equipment and services continues. As reported previously, the FAR rule implementing Section 889(a)(1)(B)’s prohibitions was published on July 14, 2020Read More

Topics: Cyber, Data Security, and Privacy, Statutes and Regulations

Another (Minor) Step in the Evolution of Section 889(a)(1)(B) Obligations

By

In the latest development relating to the implementation of Section 889 of the National Defense Authorization Act for FY 2019, a second interim rule was issued on August 27, 2020. We previously reported on the Federal Acquisition Regulation (FAR) Interim Final Rule on Section 889(a)(1)(B)’s aspects of the ban, which applies to government contractors whetherRead More

Topics: Cyber, Data Security, and Privacy, Statutes and Regulations