WHAT: The U.S. Department of Defense (DOD) just published the second of two proposed rules setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The earlier...more
8/16/2024
/ Controlled Unclassified Information (CUI) ,
Corporate Counsel ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Maturity Model Certification (CMMC) ,
Department of Defense (DOD) ,
DFARS ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
NIST ,
Proposed Rules ,
Reporting Requirements
In May 2024, the National Institute of Standards and Technology (NIST) published Special Publication 800-171 Rev 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, and the accompanying...more
WHAT: The Federal Acquisition Regulatory Council (FAR Council) issued an advanced notice of proposed rulemaking (ANPR) to implement parts of Section 5949 of the James M. Inhofe National Defense Authorization Act (NDAA) for...more
WHAT: On May 2, 2024, the U.S. Department of Defense (DOD) issued a Defense Federal Acquisition Regulation Supplement (DFARS) class deviation related to the cybersecurity standards required for covered contractor information...more
WHAT: The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) published the final version of its Secure Software Development Attestation Common Form (Common Form) and announced...more
In this episode, Wiley partners Gary Ward, Tracye Howard, and Craig Smith examine the ongoing developments related to implementation of the Cybersecurity Maturity Model Certification (CMMC) program. They discuss the current...more
This extended (90 minute) Boot Camp will review:
- Recent legislation and notable regulatory changes affecting government contractors, including pending legislation and potential forthcoming rules;
- Relevant...more
WHAT: On February 16, 2024, the U.S. Department of Defense (DOD) posted a 40-minute video overview of DOD’s proposed requirements for the Cybersecurity Maturity Model Certification (CMMC) program. The video is available here,...more
We continue to track developments affecting government contractor cybersecurity and supply chains, as the federal government churns out proposals and rules. Wiley’s supply chain, cyber, government contracts, and national...more
WHAT: On January 11, 2024, the U.S. Department of Defense (DOD) published its National Defense Industrial Strategy (NDIS). In line with DOD’s continued emphasis on modernizing and strengthening the supply chain and...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The proposed rule primarily...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth the requirements for its long-anticipated Cybersecurity Maturity Model Certification 2.0 (CMMC) program. The proposed rule primarily...more
On December 14, 2023, the House of Representatives passed the National Defense Authorization Act for Fiscal Year 2024 (NDAA), following the Senate’s passage a few days earlier. The President is expected to sign the NDAA into...more
12/19/2023
/ Artificial Intelligence ,
China ,
Cuba ,
Department of Defense (DOD) ,
Department of Homeland Security (DHS) ,
Drones ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Federal Information Security Modernization Act (FISMA) ,
FISA ,
Greenhouse Gas Emissions ,
Information and Communication Technology (ICT) ,
National Security ,
NDAA ,
Software ,
Subcontractors ,
Supply Chain ,
Unmanned Aircraft Systems ,
US State Departments
WHAT: A new interim rule prohibits contractors from delivering or using covered articles and sources that are subject to exclusion or removal orders issued under the Federal Acquisition Supply Chain Security Act of 2018...more
WHAT: As we previously reported here, on October 3, 2023, the Federal Acquisition Regulatory Council (FAR Council) proposed a pair of major cybersecurity rules intended to implement key parts of President Biden’s May 2021...more
10/12/2023
/ Cloud Computing ,
Controlled Unclassified Information (CUI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
DFARS ,
Executive Orders ,
FBI ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Information Technology ,
Internet of Things ,
Software ,
Subcontractors
WHAT: The Federal Acquisition Regulatory Council (FAR Council) proposed a pair of major cybersecurity rules intended to implement key parts of President Biden’s May 2021 Executive Order No. 14028 on Improving the Nation’s...more
On August 10, 2023, the U.S. Department of Defense (DOD) announced the creation of Task Force Lima, which will focus on generative artificial intelligence (AI) responsibility and strategy issues. The task force announcement...more
Much like high school teachers across the country, Congress and the Executive Branch have been expressing security concerns about TikTok and its parent company, ByteDance, a Chinese software firm. These concerns led to the No...more
[*Editor’s note: Humans wrote this article without using ChatGPT. Recent news events, of which we hope all attorneys are aware, suggested this was the better course.]
Artificial Intelligence (AI) seems to be infiltrating...more
On June 21, 2023, the U.S. Department of Homeland Security (DHS) issued a final rule that revises the Homeland Security Acquisition Regulation (HSAR) to implement security and privacy measures for contractors to safeguard...more
On this episode of Wiley’s Government Contracts podcast, Privacy, Cyber & Data Governance partners Duane Pozza and Kat Scott join Government Contracts partner Tracye Howard and host Craig Smith to discuss how federal policy...more
On June 9, 2023, the Office of Management and Budget (OMB) issued a guidance memorandum, OMB M-23-16, that extends the timeline for agencies to begin collecting attestations for critical and non-critical software from...more
WHAT: The Federal Acquisition Regulation (FAR) Council published an interim rule implementing the No TikTok on Government Devices Act that was included in the Consolidated Appropriations Act, 2023 (Pub. L. No. 117-328) and...more
It is hardly news that artificial intelligence (AI) has captured attention across the federal government. Wiley’s multidisciplinary AI team has been involved in efforts at the National Institute for Standards and Technology...more
6/1/2023
/ Algorithms ,
Artificial Intelligence ,
Automated Decision Systems (ADS) ,
Bias ,
Corporate Counsel ,
Department of Defense (DOD) ,
Discrimination ,
Federal Contractors ,
Federal Trade Commission (FTC) ,
General Services Administration (GSA) ,
National Security ,
NIST ,
OSTP ,
Request For Information ,
Risk Management
WHAT: The U.S. Department of Defense (DOD) issued a final rule that requires contracting officers to consider Supplier Performance Risk System (SPRS) risk assessments when evaluating contractors’ proposals and quotes and when...more