News & Analysis as of

Cybersecurity Comment Period Risk Management

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Esquire Deposition Solutions, LLC

New Jersey Weighs New Duty of Technology Competence

Esquire Deposition Solutions, LLC on

New Jersey appears poised to become the next state to explicitly add a duty of technology competence to its professional code of ethics. Proposed revisions to the New Jersey Rules of Professional Conduct would, if adopted,...more

White & Case LLP

What’s New – FAR Council Publishes Proposed Rules Concerning CUI and OCIs

White & Case LLP on

On January 15, 2025, the Federal Acquisition Regulatory Council (FAR Council) proposed two significant rule changes that could reshape compliance obligations for government contractors: one establishing standardized...more

McDermott+

To Comment or Not to Comment: Looking at the Biden Administration’s HIPAA Cybersecurity Proposed Reg

McDermott+ on

One of the Biden Administration’s last healthcare regs was a proposed rule that, if finalized, would make significant changes to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule to...more

Sheppard Mullin Richter & Hampton LLP

FedRAMP Releases New Draft Authorization Boundary Guidance

Sheppard Mullin Richter & Hampton LLP on

Over the last few years, the Federal Risk and Authorization Management Program (“FedRAMP”) Program Management Office (“PMO”) has released two draft guidance documents related to defining the applicable boundary for security...more

Faegre Drinker Biddle & Reath LLP

Proposed HIPAA Security Rule Updates — Implications for Covered Entities and Their Information Security Programs

Faegre Drinker Biddle & Reath LLP on

On January 6, 2025, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) published a notice of proposed rulemaking (Proposed Rule) updating the Health Insurance Portability and...more

Ballard Spahr LLP

HHS Proposes Significant Updates to HIPAA Security Rule

Ballard Spahr LLP on

On January 6, 2025, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) published a Notice of Proposed Rulemaking (“NPRM”) to amend the Health Insurance Portability and Accountability Act...more

Fisher Phillips

Proposed Updates to HIPAA Security Rule Would Require Entities to Adopt Enhanced Cybersecurity Measures

Fisher Phillips on

The HIPAA Security Rule may soon undergo a big overhaul that would better defend healthcare data from cybersecurity threats – and require much more from covered entities when it comes to establishing and maintaining defenses....more

Hogan Lovells

TSA rule would require cyber risk management for railroads, buses, and pipeline operators

Hogan Lovells on

On November 6, 2024, the Transportation Security Administration (TSA) published a Notice of Proposed Rulemaking (NPRM) that would mandate cyber risk management and reporting requirements for certain surface transportation...more

Jones Day

TSA Releases Proposed Rule to Enhance Pipeline and Railroad Cyber Risk Management

Jones Day on

The Transportation Security Administration's ("TSA") proposed rule would require owners and operators of certain pipeline, freight railroad, passenger railroad, rail transit, and over-the-road bus ("OTRB") systems to...more

McDermott Will & Emery

CMMC Level 3: Strict Scoping and Expansive Requirements

McDermott Will & Emery on

In this series of articles, we explore the different certification requirements of CMMC Levels 1, 2 and 3; the impact on contractors and external service providers; and proposed next steps... On December 26, 2023, the US...more

Bass, Berry & Sims PLC

Cyber Incident Reporting May Be “Material” for Federal Contractors

Bass, Berry & Sims PLC on

Last month, the Federal Acquisition Regulatory Council proposed new cybersecurity and incident reporting regulations for federal contractors on behalf of the Department of Defense (DoD), the General Services Administration...more

Constangy, Brooks, Smith & Prophete, LLP

NIST Issues Cybersecurity Framework 2.0 for public comment

Constangy, Brooks, Smith & Prophete, LLP on

In early August, the National Institute of Standards and Technology released the initial public draft of its Cybersecurity Framework 2.0. The draft is a long-awaited update to a framework that’s been in place for almost 10...more

Davis Wright Tremaine LLP

Department of Commerce’s NTIA Sets Sights on Developing Federal AI Accountability Policies

Davis Wright Tremaine LLP on

On April 11, 2023, the Department of Commerce, through the National Telecommunications and Information Administration (NTIA), issued a request for comments (RFC) on AI system accountability measures and policies. The “AI...more

Skadden, Arps, Slate, Meagher & Flom LLP

Investment Management Update - April 2023

Skadden, Arps, Slate, Meagher & Flom LLP on

SEC Rules and Amendments - Liquidity Rule Amendments: Interval Funds to the Rescue? On November 2, 2022, the Securities and Exchange Commission (SEC) voted to propose significant amendments to Rule 22e-4 under the...more

Morgan Lewis - Tech & Sourcing

NYDFS Publishes Proposed Amendment to Its Cybersecurity Rules for Financial Services Companies

Morgan Lewis - Tech & Sourcing on

The New York Department of Financial Services (NYDFS) published its proposed amendment to its 23 NYCRR Part 500 (Cybersecurity Rules) on November 9, 2022, following the release of the draft version on July 29, 2022....more

Blank Rome LLP

Regulatory Update and Recent SEC Actions - April 2022

Blank Rome LLP on

REGULATORY UPDATES - Senate Confirms Jackson as Supreme Court Justice - The Senate has voted to confirm Judge Ketanji Brown Jackson as the 116th Supreme Court justice and the first Black woman and former public defender to...more

Hogan Lovells

SEC proposes significant new cybersecurity disclosure requirements

Hogan Lovells on

On March 9, 2022 the SEC proposed rule amendments that would require public companies to report detailed information about material cybersecurity incidents affecting their business and about their cybersecurity risk...more

Wiley Rein LLP

NIST Moves to Update its Cybersecurity Framework, Seeks Public Comment

Wiley Rein LLP on

The National Institute of Standards and Technology (NIST) has kicked off the process for revamping its flagship cybersecurity guidance document – the Framework for Improving Critical Infrastructure Cybersecurity (CSF), which...more

BakerHostetler

SEC Proposes Rules on Disclosure of Material Cyber Incidents and Cybersecurity Practices for Public Companies

BakerHostetler on

On March 9, 2022, the SEC released proposed rules intended to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance and cyber incident reporting by companies that are subject to the...more

Alston & Bird

SEC Cements Expectations for Investment Advisers’ and Investment Companies’ Cyber Preparedness and Disclosure

Alston & Bird on

Our Privacy, Cyber & Data Strategy and Investment Management, Trading & Markets Teams review the Securities and Exchange Commission’s potentially transformative proposed rules that would require registered investment...more

Fenwick & West LLP

SEC Proposes New Rules to Enhance Reporting of Cybersecurity Issues

Fenwick & West LLP on

The U.S. Securities and Exchange Commission has proposed rules and amendments to enhance and standardize the reporting on cybersecurity risk management, strategy, governance and incidents disclosed by public companies....more

Perkins Coie

SEC Proposes New Cybersecurity Risk Management Regime for Registered Funds and Advisers

Perkins Coie on

In today’s asset management landscape, cybersecurity threats are omnipresent, and with constantly evolving tools of attack, actual breaches have become increasingly prevalent. As the complexity, scope, and frequency of cyber...more

Burr & Forman

SEC Proposes Cybersecurity Rule for Advisers, Investment Companies

Burr & Forman on

On February 9, the SEC proposed new cybersecurity risk management regulations for investment advisers, registered investment companies (funds), and business development companies....more

Goodwin

SEC Proposes Changes to Private Fund Regulation

Goodwin on

In This Issue. The U.S. Securities and Exchange Commission (SEC) proposed changes to private fund regulation; the Office of the Comptroller of the Currency (OCC) succeeded in validating its “valid-when-made” rulemaking; the...more

Hogan Lovells

UK Government calls for feedback on regulation of IoT device security

Hogan Lovells on

Following the UK Government's announcement in January 2020 that it would be moving forwards with regulation on consumer IoT device security, the Government has now published its legislative proposals and is seeking feedback...more

44 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide