News & Analysis as of

Cybersecurity National Institute of Standards and Technology Supply Chain

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Wiley Rein LLP

Cybersecurity Updates: NIST Publishes SP 800-171 Revision 3. What Changed, and What Comes Next?

Wiley Rein LLP on

In May 2024, the National Institute of Standards and Technology (NIST) published Special Publication 800-171 Rev 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, and the accompanying...more

Foley & Lardner LLP

Rolling With the Punches in a Networked World: CCOE Cybersecurity Panel Discussion

Foley & Lardner LLP on

Whether the game is football, baseball, hockey, or Indy Car racing, no team goes into their major championship matchup without training. Companies need to train as well if they intend to operate on the internet and expect to...more

Akin Gump Strauss Hauer & Feld LLP

New Cybersecurity Controls for Government Contractors: NIST Revises SP 800-171

Akin Gump Strauss Hauer & Feld LLP on

In May, the National Institute of Standards and Technology (NIST) issued updated recommendations for security controls for controlled unclassified information (CUI) that is processed, stored or transmitted by nonfederal...more

Wiley Rein LLP

CYBER UPDATE: White House Seeks Regulatory Harmonization While Exploring a Pilot for Reciprocity Amid Proliferation of Regulations

Wiley Rein LLP on

Companies, particularly those in “critical infrastructure” sectors, have seen a dramatic increase in cybersecurity regulatory requirements in just the past few years – and the White House is looking to move faster. At the...more

Holland & Knight LLP

Foundational Cybersecurity Standards for Contractors Updated

Holland & Knight LLP on

The National Institute of Standards and Technology (NIST) released the third revision of its Special Publication (SP) 800-171, "Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations." This...more

Sheppard Mullin Richter & Hampton LLP

CISA Opens Repository for Submission of Software Security Attestation Forms

Sheppard Mullin Richter & Hampton LLP on

On March 11, 2024, the Cybersecurity and Infrastructure Security Agency (“CISA”) and the Office of Management and Budget (“OMB”) released the highly-anticipated Secure Software Development Attestation Form (also known as the...more

Hogan Lovells

NIST refines Cybersecurity Security Framework, with increased focus on governance and supply chain

Hogan Lovells on

NIST has updated its widely used Cybersecurity Framework to provide key updates and practical resources for organizations to manage and discuss cybersecurity risk. The updated framework, which remains voluntary, is designed...more

Wiley Rein LLP

NIST Cybersecurity Framework 2.0 Reveals Major Shifts in Federal Guidance

Wiley Rein LLP on

On February 26, 2024, the National Institute of Standards and Technology (NIST) released the Cybersecurity Framework version 2.0 (CSF 2.0). CSF 2.0 is a generational update to NIST’s foundational cybersecurity guidance, which...more

Dunlap Bennett & Ludwig PLLC

Get Ahead Of Compliance: The Proposed Rule For The Cybersecurity Maturity Model Certification (CMMC 2.0) Is Out!

Dunlap Bennett & Ludwig PLLC on

As a lawyer working in a firm with a sophisticated legal team providing robust regulatory, government contract, and cybersecurity services, our Christmas present and holiday reading arrived early with the publication of the...more

Sheppard Mullin Richter & Hampton LLP

Update: CISA Seeks Additional Input from Software Providers on Security Attestation Form

Sheppard Mullin Richter & Hampton LLP on

The Cybersecurity and Infrastructure Security Agency (“CISA”) recently revised its Secure Software Development Attestation Common Form (after receiving over 110 comments on the initial draft), and is seeking additional...more

Davis Wright Tremaine LLP

CISA, UK NCSC, and 17 Other Countries Issue Landmark Joint Guidelines for Secure AI System Development

Davis Wright Tremaine LLP on

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the UK National Cyber Security Centre (UK NCSC), along with partner agencies from 17 nations, have released Guidelines for Secure AI System Development (the...more

Davis Wright Tremaine LLP

CISA Releases Revised Draft of Secure Software Development Self-Attestation Form

Davis Wright Tremaine LLP on

The Cybersecurity and Infrastructure Security Agency (CISA) has released a revised draft of its Secure Software Development Attestation Common Form ("Form"). The Form, once finalized, will obligate vendors providing software...more

Lowenstein Sandler LLP

Trade Matters - Lowenstein Sandler's Global Trade & National Security Newsletter - NOVEMBER 7, 2023

Lowenstein Sandler LLP on

1. BIS Releases Texts of New Chip Export Control Rules- Updating and expanding on rules issued last year, the U.S. Department of Commerce’s Bureau of Industry and Security (BIS) released three rules on October 27 targeting...more

Constangy, Brooks, Smith & Prophete, LLP

NIST Issues Cybersecurity Framework 2.0 for public comment

Constangy, Brooks, Smith & Prophete, LLP on

In early August, the National Institute of Standards and Technology released the initial public draft of its Cybersecurity Framework 2.0. The draft is a long-awaited update to a framework that’s been in place for almost 10...more

Dunlap Bennett & Ludwig PLLC

The Role Of A Cybersecurity Law Firm In Safeguarding Digital Assets

Dunlap Bennett & Ludwig PLLC on

In today’s digital landscape, organizations face numerous cybersecurity threats that can compromise their valuable digital assets, including their data, IT infrastructure, networks, software, and intellectual property (IP)....more

Harris Beach PLLC

Cybersecurity Framework Updated to Help Industries Avoid Risks

Harris Beach PLLC on

The National Institute of Standards and Technology (NIST) released a new draft of its cybersecurity framework on Aug 8, providing updated guidance for industries, government agencies and other organizations on reducing...more

Fenwick & West LLP

UPDATE: Secure Software Development Attestation: A(nother) Government Requirement

Fenwick & West LLP on

As follow-on guidance to Office of Management and Budget’s (OMB) September 14, 2022 memo and the associated Executive Order on Improving the Nation’s Cybersecurity from May 2021, the Cybersecurity and Infrastructure Security...more

McCarter & English Blog: Government Contracts...

NIST SP 800-171 Revision 3: Not Another Reboot

McCarter & English Blog: Government Contracts... on

Hollywood is full of them. And unless you are trapped on the Planet of the Apes, caught on the 3:10 to Yuma, or running from Godzilla, you’ve probably seen a movie reboot or two over the past two decades. The term generally...more

Hogan Lovells

NIST prepares for Cybersecurity Framework 2.0, with increased focus on governance and supply chain

Hogan Lovells on

The US government continues to refine its influential cybersecurity guidance, the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), with a substantial update to the CSF expected later this...more

Sheppard Mullin Richter & Hampton LLP

Do Business With the Federal Government? Here’s a 2022 Cybersecurity Recap: Part Three - Secure Software Development Attestation...

Sheppard Mullin Richter & Hampton LLP on

Yesterday we continued our series... with the Office of Management and Budget’s September 2022 memorandum requiring federal agencies to only use software from software producers that attest compliance with secure software...more

Dunlap Bennett & Ludwig PLLC

Updating Government Contracting Documents for Cybersecurity

Dunlap Bennett & Ludwig PLLC on

This article is the third and final installment in a series of articles about how lawyers can better serve their clients by involving themselves in cybersecurity planning at an early stage. Just like Return of the Jedi was...more

Sheppard Mullin Richter & Hampton LLP

Federal Government Outlines New Security and Attestation Requirements for Software

Sheppard Mullin Richter & Hampton LLP on

Per Executive Order 14028, Improving the Nation’s Cybersecurity, the Office of Management and Budget (OMB) issued a memorandum on September 14, 2022 requiring federal agencies to only use software from software producers that...more

Jones Day

New Security Rules for Organizations Supplying Software to the Federal Government

Jones Day on

The OMB has issued memorandum M-22-18 with new security requirements (the "Rules") requiring federal agencies to ensure that all third-party software they use complies with secure software development standards and guidance...more

Foley & Lardner LLP

U.S. and British Law Enforcement Agencies Issue Unprecedented Warning About Chinese Espionage Efforts

Foley & Lardner LLP on

On July 6, 2022, the heads of the U.S. Federal Bureau of Investigation (FBI) and the British MI5 law enforcement agencies issued an unprecedented joint statement warning about espionage and other economic threats from China....more

Pillsbury Winthrop Shaw Pittman LLP

Contractor Settles Cybersecurity-Related False Claims Act Suit for $9 million

Pillsbury Winthrop Shaw Pittman LLP on

A seven-year long False Claims Act suit comes to an end after Aerojet Rocketdyne reaches a $9 million settlement agreement for its alleged false certification of compliance with cybersecurity requirements. In the settlement...more

84 Results
 / 
View per page
Page: of 4
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide