The Department of Defense (DoD) published the updated Cybersecurity Maturity Model Certification (CMMC) Program to enforce existing cybersecurity standards across the defense industrial base. This program is designed to...more
The Department of Defense (DoD) has officially launched the Cybersecurity Maturity Model Certification (CMMC) Program, which requires federal contractors and subcontractors across the Defense Industrial Base (DIB) to comply...more
On 21 June 2024, the Office of Investment Security of the US Department of the Treasury (Treasury) issued proposed regulations to implement President Biden’s August 2023 Executive Order on Addressing United States Investments...more
6/27/2024
/ CFIUS ,
China ,
Civil Monetary Penalty ,
Critical Infrastructure Sectors ,
Executive Orders ,
Foreign Investment ,
International Emergency Economic Powers Act (IEEPA) ,
Investment ,
National Security ,
Prohibited Transactions ,
Proposed Regulation ,
Supply Chain ,
U.S. Treasury
On 1 May 2024, the US State Department’s Directorate of Defense Trade Controls (DDTC) issued a proposed rule to amend the International Traffic in Arms Regulations (ITAR) to support the goals of the trilateral security...more
5/9/2024
/ AUKUS ,
Australia ,
Directorate of Defense Trade Controls (DDTC) ,
Exemptions ,
Export Controls ,
Exports ,
ITAR ,
Licensing Rules ,
Proposed Rules ,
UK ,
US Department of State
On 15 April 2024, the Treasury Department’s Office of Investment Security published a Proposed Rule to revise the regulations governing the Committee on Foreign Investment in the United States (CFIUS or the Committee). The...more
On 28 February 2024, President Biden issued Executive Order 14117 of February 28, 2024, Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern (EO) aimed...more
3/25/2024
/ Biden Administration ,
Data Collection ,
Data Storage ,
Data Transfers ,
Data-Sharing ,
Department of Justice (DOJ) ,
Executive Orders ,
Foreign Entities ,
International Data Transfers ,
Personal Data ,
Regulatory Oversight
The maritime industry is undergoing a significant transformation that involves increased use of cyber-connected systems, coinciding with increased nation-state and cybercriminal targeting of cyber systems in ports and...more
3/19/2024
/ Biden Administration ,
Coast Guard ,
Cyber Threats ,
Cybersecurity ,
Executive Orders ,
Maritime Transport ,
NPRM ,
Ransomware ,
Risk Management ,
Vessels ,
Vulnerability Assessments
On 18 December 2023, the new rules of the US Securities and Exchange Commission (SEC) regarding disclosure of material cybersecurity incidents under Item 1.05 of Form 8-K went into effect, requiring companies to report a...more
Driven by concerns around increasing sanctions evasion activities by Russia, China, Iran and North Korea, the US Government is stepping up enforcement and warning companies in the extended cargo and shipping supply chain to...more
On 30 October 2023, President Biden issued a long-awaited executive order (EO) on artificial intelligence (AI). The EO itself is available here, and a one-page fact sheet issued by the White House is available here. The...more
11/6/2023
/ Artificial Intelligence ,
Biden Administration ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Privacy ,
Disclosure Requirements ,
Executive Orders ,
National Security ,
Regulatory Agenda ,
Regulatory Standards ,
Reporting Requirements ,
Risk Assessment ,
Technology Sector
On 17 October 2023, the US Department of Commerce’s Bureau of Industry and Security (BIS) issued two new Interim Final Rules (collectively, the Updated Rule) that significantly revise and expand controls under the US Export...more
10/30/2023
/ Artificial Intelligence ,
Bureau of Industry and Security (BIS) ,
ECCNs ,
End-Users ,
Entity List ,
Export Administration Regulations (EAR) ,
Export Controls ,
Exports ,
Interim Final Rules (IFR) ,
National Security ,
Semiconductors ,
U.S. Commerce Department
For the first time, on 12 October 2023, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) imposed sanctions on vessels and their owners for breaching the price cap on seaborne Russian crude oil...more
The United States eased certain economic sanctions against Venezuela on 18 October 2023 in response to the signing of an electoral roadmap agreement between the Maduro regime and Venezuela’s Unitary Platform. Under this...more
Starting on 1 January 2024, entities will need to comply with the reporting rules under the Corporate Transparency Act (CTA).1 The implementing Treasury regulations were published on 30 September 2022.2 The CTA applies both...more
On 9 August 2023, President Biden issued a long anticipated executive order imposing certain limitations, reporting requirements, and prohibitions on outbound investment from the United States into certain sensitive industry...more
The Committee on Foreign Investment in the United States (CFIUS or the Committee) recently proposed expanding the scope of its jurisdiction to review real estate transactions to add over 200,000 square miles of land...more
In a set of actions in coordination with G7 allies, US and UK export control authorities recently announced significant escalations of sanctions and export controls against Russia and Belarus. These actions indicate continued...more
Government contractors providing software across the federal government’s supply chain will be required later this year to comply with a new Secure Software Design Framework (SSDF). The SSDF requires software vendors to...more
A common approach in dealing with potential violations of the US export control laws is to undertake a voluntary disclosure to the regulators and thereby benefit from long-standing policies that favor such disclosure by...more
On 7 October 2022, the U.S. Department of Commerce’s Bureau of Industry and Security (BIS) issued two Interim Final Rules (collectively, The Rule) that significantly enhance U.S. export controls as applied to advanced...more