News & Analysis as of

National Institute of Standards and Technology

Compliance Deadline Reached for DoD Contractor Security Controls Requirements

by WilmerHale on

Under the Department of Defense (DoD) final Defense Federal Acquisition Regulation Supplement (DFARS) rule on Network Penetration Reporting and Contracting for Cloud Services, DoD contractors maintaining, processing, or...more

2017, We Hardly Knew You: A Look Ahead to 2018

by Holland & Knight LLP on

Taking over as editors of Holland & Knight’s Government Contracts Blog has been a labor, but it has been a labor of love. Like the rest of the Government Contracts Team, we are passionate about staying on top of the latest...more

NIST Releases Second Draft of Revised Cybersecurity Framework

Revising its guidance on internal assessments and highlighting the importance of managing cybersecurity within supply chains, the National Institute of Standards and Technology (NIST) released the second draft of Version 1.1...more

Nutter Bank Report, December 2017

by Nutter McClennen & Fish LLP on

Federal Banking Agencies Issue New Guidance for Banks Affected by a Major Disaster - The federal banking agencies have jointly issued new guidance on the supervisory practices to be followed in assessing the financial...more

US Government Contractors Face New Cybersecurity Requirements

by Latham & Watkins LLP on

As of December 31, 2017, many United States government contractors face a new compliance requirement involving cybersecurity. This requirement will govern most new Department of Defense (DoD) contracts and, significantly,...more

New DoD Cybersecurity Requirements Go Into Effect

by Latham & Watkins LLP on

The DFARS final rule requires contractors to safeguard information systems and imposes investigation and reporting requirements in the case of cyber incidents. As of December 31, 2017, many United States government...more

December 31, 2017 Deadline for Cybersecurity under DFARS 252.204-7012 Re-Interpreted

The DoD clarifies its expectation for full compliance to protect Controlled Unclassified Information (CUI) residing on Contractor Systems from cyber incidents. A defense contractor’s updated and current System Security...more

(Another) Federal Data Breach Notification Law Introduced in Congress

by Wilson Elser on

Senate Democrats have introduced a third iteration of a federal data breach notification bill, the Data Security and Breach Notification Act of 2017 (S.B. 2179). If passed into law, this bill would replace the patchwork of 48...more

NIST Publishes Draft 2 of the Revised NIST Cybersecurity Framework for Comment by January 19, 2018

by Balch & Bingham LLP on

On December 5, 2017, NIST published a revised version of the NIST Cybersecurity Framework (i.e., Draft 2 of Version 1.1) (“Framework”). According to NIST, Version 1.1 of the Framework refines, clarifies, and enhances Version...more

Happy Cybersecurity New Year

by PilieroMazza PLLC on

After the ball drops in Times Square this New Year’s Eve, many DoD contractors will wake up with a headache. And I don’t mean from too much champagne. I’m talking about extensive DoD cybersecurity requirements these...more

Defense contractors – the time has come: December 31 is the deadline for cybersecurity safeguarding compliance

by DLA Piper on

Defense contractors and subcontractors that handle certain types of defense information must be in compliance with Department of Defense (DoD) cybersecurity requirements by the December 31, 2017 deadline. Affected contractors...more

NIST Releases Updated Cyber Framework V1.1

by Alston & Bird on

On December 5, 2017, the National Institute of Standards and Technology (NIST) released a revised draft of its proposed updates to its Framework for Improving Critical Infrastructure Cybersecurity. The revised draft includes...more

Pending Legislation Seeks to Secure Federal Government IoT

by Reed Smith on

A recent Senate bill is yet another signal of the federal government’s increasing focus on the security of the Internet of Things. The Internet of Things (IoT) Cybersecurity Improvement Act of 2017, introduced by Senator Mark...more

NIST Releases Highly-Anticipated Draft Special Publication on Assessing the Security Requirements in NIST SP 800-171 for...

Pursuant to DFARS 252.204-7012, DoD contractors are to implement the security requirements in NIST Special Publication (SP) 800-171 by December 31, 2017. NIST SP 800-171 includes security requirements for protecting...more

Final Countdown to DFARS Cybersecurity Compliance

Most federal defense contractors are aware that December 31, 2017, is the deadline for them to comply with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171, Protecting Controlled...more

Global Privacy & Cybersecurity Update Vol. 16

by Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - United States and China Renew Promise Not to Hack - On October 4, U.S. and Chinese officials agreed to not engage in targeted hacking. Per a...more

Ohio Proposes Act to Incentivize Consumer Data Security

by Benesch on

Legislation was recently introduced in Ohio encouraging businesses to take steps in protecting consumer data. Ohio Senate Bill 220, The Data Protection Act (the “Act”), provides businesses that take certain commercially...more

House Lawmakers Retreat From NIST Cyber Auditing Role In Proposed Bill

by King & Spalding on

Members of the House of Representatives Science Committee modified a bill that would have made the National Institute of Standards and Technology (“NIST”) responsible for auditing federal agencies’ cybersecurity protections....more

DFARS Cybersecurity Compliance Countdown: Are You Ready?

by Blank Rome LLP on

It’s almost here. After years of rulemaking, covered defense contractors will soon be fully subject to heightened cybersecurity standards for covered defense information (“CDI”) on IT systems under DFARS 252.204-7012, and...more

December 31 Deadline Approaching for Contractors Who Handle Export-Controlled Technical Information

by Williams Mullen on

Under DFARS Clause 252.204-7012, certain government contractors that store, process or transmit technical information that is controlled under the International Traffic In Arms Regulations (“ITAR”) or the Export...more

Three October Bid Protest Decisions That May Affect Your Business

• First, an awardee is responsible for keeping tabs on what happens in a protest of its award, or it may not be able to submit its own challenge if the protest is sustained. • Second, mere compliance with cybersecurity...more

Clinical trials Part II: Privacy, cybersecurity risks, and managing ePHI

by Thompson Coburn LLP on

The ongoing digitization of the drug and medical device industries continues, and, as a result, new considerations have come to the forefront for companies engaged in clinical trials. In Part 1 of this series, we described a...more

Imminent Deadline Looms for Government Contractors on Cybersecurity Compliance

by PilieroMazza PLLC on

Now that the government fiscal year end has passed, government contractors that handle controlled unclassified information (“CUI”) must turn their attention – if they haven’t already – to the quickly approaching calendar year...more

DoD Cyber Compliance Deadline Fast Approaching – Here’s What Government Contractors Need to Know

by McGuireWoods LLP on

U.S. Department of Defense (DoD) contractors face new cybersecurity compliance requirements, including a significant deadline set for December 31, 2017. Most DoD contracts now include clauses imposing obligations on...more

So You’re Finally Compliant with the DFARS and NIST Requirements, but Are Your Subcontractors?

As the December 31 deadline for implementation of the NIST special publication 800-171 requirements called for by DFARS 252.204-7012 (“the DFARS cyber clause”) quickly approaches, most DoD prime contractors have taken steps...more

474 Results
|
View per page
Page: of 19
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.