Daniel Alvarado

Daniel Alvarado

Sheppard Mullin Richter & Hampton LLP

Contact
View Bio
RSS

Latest Posts › Risk Management

Share:

FedRAMP 20x – Update on Significant Change Process and Assessment Scope Standards

Last month, the federal government announced a major overhaul of the Federal Risk and Authorization Management Program (“FedRAMP”) called “FedRAMP 20x”. FedRAMP 20x is moving forward fast – with new authorizations, community...more

5/5/2025  /  Cloud Computing , Comment Period , Data Security , FedRAMP , Government Agencies , New Guidance , Regulatory Reform , Regulatory Standards , Risk Management , Software

FedRAMP 20x – Major Overhaul Announced to Streamline the Security Authorization Process for Government Cloud Offerings

On March 24, 2025, the Federal Risk and Authorization Management Program (“FedRAMP”) announced a major overhaul of the program, which is being called “FedRAMP 20x.” The FedRAMP 20x announcement stated there are no immediate...more

4/3/2025  /  Automation Systems , Cloud Computing , Compliance , Cybersecurity , FedRAMP , Government Agencies , Regulatory Requirements , Risk Assessment , Risk Management , Software

FedRAMP Releases New Draft Authorization Boundary Guidance

Over the last few years, the Federal Risk and Authorization Management Program (“FedRAMP”) Program Management Office (“PMO”) has released two draft guidance documents related to defining the applicable boundary for security...more

1/30/2025  /  Cloud Computing , Comment Period , Compliance , Cybersecurity , Data Privacy , Data Security , Draft Guidance , Federal Contractors , FedRAMP , New Guidance , NIST , Regulatory Requirements , Risk Management

Governmental Practice Cybersecurity and Data Protection: 2024 Recap & 2025 Forecast Alert

To kick off the New Year (and as is now tradition, since we put out a similar Recap & Forecast last year), Sheppard Mullin’s Governmental Practice Cybersecurity & Data Protection Team has prepared a cybersecurity-focused 2024...more

1/8/2025  /  Artificial Intelligence , Compliance , Critical Infrastructure Sectors , Cybersecurity , Cybersecurity Maturity Model Certification (CMMC) , Data Protection , Department of Defense (DOD) , DFARS , Enforcement , Federal Acquisition Regulations (FAR) , Federal Contractors , FedRAMP , National Security , Reporting Requirements , Risk Management , Software

Better Safe Than Sorry: OMB Releases Memorandum on Managing AI Risks in the Federal Government

On March 28, 2024, the Office of Management and Budget (“OMB”) issued Memorandum M-24-10, Advancing Governance, Innovation, and Risk Management for Agency Use of Artificial Intelligence (the “Memo”). This is the final version...more

4/30/2024  /  Artificial Intelligence , Data Privacy , Data Security , OMB , Policy Memorandums , Regulatory Agencies , Regulatory Agenda , Request For Information , Risk Assessment , Risk Management , Technology

Seeking HoNIST Opinions, Part II – NIST Invites Comments on Major Revision to Cyber Supply Chain Risk Management Practices and...

The National Institute of Standards and Technology (“NIST”) is seeking comments on its second draft of NIST SP 800-161 Rev. 1, “Cyber Supply Chain Risk Management Practices for Systems and Organizations,” published on October...more

11/11/2021  /  Biden Administration , Cybersecurity , Data Security , Executive Orders , Federal Contractors , Government Agencies , Information Technology , NIST , Risk Management , Software , Supply Chain , Technology
6 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide