On Dec. 6, the Department of Health and Human Services (HHS or the Department) released what it is calling a “concept paper” on its role in cybersecurity for the healthcare sector (the HHS paper). The HHS paper is sweeping in...more
Last year, the UK Department of Digital, Culture, Media and Sport (DCMS) published its 10- year National AI Strategy for the regulation and promotion of artificial intelligence (AI) in the UK (Report). DCMS seeks to build...more
Consumer software providers will soon have the option to label their software as compliant with National Institute of Standards and Technology (NIST) standards for software security. On November 1, 2021, NIST published its...more
As called for in the May 12, 2021 Cybersecurity Executive Order (“EO”) released by the Biden Administration (discussed here), NIST met its deadline to release a definition of “critical software” within 45 days of the date of...more
The Federal Energy Regulatory Commission (FERC) issued a Notice of Inquiry (NOI) on June 18, 2020, requesting comments on potential enhancements to the current U.S. Critical Infrastructure Protection (CIP) Reliability...more
On June 18, 2020, the Federal Energy Regulatory Commission (FERC or the “Commission”) issued a Cybersecurity Incentives Policy White Paper (the “White Paper”). The White Paper, issued in Docket No. AD20-19-000, discusses a...more
FERC and NERC’s joint proposal to name and shame violators of Critical Infrastructure Protection Reliability Standards underscores the importance for electric utilities to have insurance coverage for cyberattacks. The staffs...more