Daniel Alvarado

Daniel Alvarado

Sheppard Mullin Richter & Hampton LLP

Contact
View Bio
RSS

Latest Posts › Software

Share:

FedRAMP 20x – Update on Significant Change Process and Assessment Scope Standards

Last month, the federal government announced a major overhaul of the Federal Risk and Authorization Management Program (“FedRAMP”) called “FedRAMP 20x”. FedRAMP 20x is moving forward fast – with new authorizations, community...more

5/5/2025  /  Cloud Computing , Comment Period , Data Security , FedRAMP , Government Agencies , New Guidance , Regulatory Reform , Regulatory Standards , Risk Management , Software

FedRAMP 20x – Major Overhaul Announced to Streamline the Security Authorization Process for Government Cloud Offerings

On March 24, 2025, the Federal Risk and Authorization Management Program (“FedRAMP”) announced a major overhaul of the program, which is being called “FedRAMP 20x.” The FedRAMP 20x announcement stated there are no immediate...more

4/3/2025  /  Automation Systems , Cloud Computing , Compliance , Cybersecurity , FedRAMP , Government Agencies , Regulatory Requirements , Risk Assessment , Risk Management , Software

Governmental Practice Cybersecurity and Data Protection: 2024 Recap & 2025 Forecast Alert

To kick off the New Year (and as is now tradition, since we put out a similar Recap & Forecast last year), Sheppard Mullin’s Governmental Practice Cybersecurity & Data Protection Team has prepared a cybersecurity-focused 2024...more

1/8/2025  /  Artificial Intelligence , Compliance , Critical Infrastructure Sectors , Cybersecurity , Cybersecurity Maturity Model Certification (CMMC) , Data Protection , Department of Defense (DOD) , DFARS , Enforcement , Federal Acquisition Regulations (FAR) , Federal Contractors , FedRAMP , National Security , Reporting Requirements , Risk Management , Software

Finally Invited to the Party? Federal Circuit Opens the Door for Software Companies Selling Through Resellers to Bring a Contract...

In January 2022, we warned software companies selling indirectly against attempting to enforce the terms of their End User License Agreement (“EULA”) directly against the Federal Government based on the decision of the...more

3/28/2024  /  CBCA , EULA , General Services Administration (GSA) , License Agreements , Licenses , Sanctions , Software , Software Developers , State Procurement Contracts , Technology Sector

Governmental Practice Cybersecurity and Data Protection - 2023 Recap & 2024 Forecast Alert

To kick off the New Year, Sheppard Mullin’s Governmental Practice Cybersecurity & Data Protection Team has prepared a cybersecurity-focused 2023 Recap (including links to all of the resources the team has put out over the...more

2/12/2024  /  Artificial Intelligence , Cloud Computing , Cybersecurity , Data Protection , Data Security , Department of Defense (DOD) , Enforcement , Federal Acquisition Regulations (FAR) , FedRAMP , Software

Governmental Practice Cybersecurity and Data Protection: 2023 Recap & 2024 Forecast Alert

To kick off the New Year, Sheppard Mullin’s Governmental Practice Cybersecurity & Data Protection Team has prepared a cybersecurity-focused 2023 Recap (including links to all of the resources the team has put out over the...more

2/9/2024  /  Cloud Computing , Cybersecurity , Cybersecurity Maturity Model Certification (CMMC) , Data Protection , Data Rights , Data Security , Department of Defense (DOD) , Enforcement Actions , Federal Contractors , FedRAMP , Fraud , Privacy Laws , Software

Software Companies Beware: Board Holds Subcontractor Cannot Enforce EULA Directly Against Federal Government

Software companies selling indirectly to the Federal Government finally received an answer to a question that has lingered for years – can a software company going to market through a reseller bring a direct claim under the...more

1/31/2022  /  Contract Disputes Act , End-Users , EULA , General Services Administration (GSA) , License Agreements , Software , Software Developers , Software Licenses

Seeking HoNIST Opinions, Part II – NIST Invites Comments on Major Revision to Cyber Supply Chain Risk Management Practices and...

The National Institute of Standards and Technology (“NIST”) is seeking comments on its second draft of NIST SP 800-161 Rev. 1, “Cyber Supply Chain Risk Management Practices for Systems and Organizations,” published on October...more

11/11/2021  /  Biden Administration , Cybersecurity , Data Security , Executive Orders , Federal Contractors , Government Agencies , Information Technology , NIST , Risk Management , Software , Supply Chain , Technology

Seeking HoNIST Opinions – NIST Invites Comments on Major Revision to Cyber Supply Chain Risk Management Practices for Systems and...

The National Institute of Standards and Technology (“NIST”) is seeking comments on its draft NIST SP 800-161 Rev. 1, “Cyber Supply Chain Risk Management Practices for Systems and Organizations,” published on April 29, 2021....more

5/27/2021  /  Biden Administration , Critical Infrastructure Sectors , Cybersecurity , Cybersecurity Information Sharing Act (CISA) , Executive Orders , Information Technology , NIST , Popular , Software , Supply Chain , Technology
9 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide