Podcast - Cybersecurity Roundup: Analyzing New and Proposed Rules for Contractors
Cybersecurity Insights: Updates on CMMC Implementation and CUI Identification
Podcast - Third-Party Assessments and NIST SP 800-171
Third-Party Assessments and NIST SP 800-171
[Podcast] AI Risk Management: A Discussion with NIST’s Elham Tabassi on the NIST AI Risk Management Framework
Compliance into the Weeds - ChatGPT for the Compliance Professional
Nota Bene Episode 150: Building an AI Risk Management Framework with Siraj Husain
DoD Cyber: A Conversation with Melissa Vice, COO for DoD’s Vulnerability Disclosure Program
Cybersecurity and Data Privacy Year in Review: Major Breaches, Changes in the Law, and Upcoming Trends
The Government Contracts Cyber Café: Recent Developments Update
How to Respond to President Obama's Cybersecurity Executive Order
On October 15, 2024, the Department of Defense (DoD) published the final rule for the Cybersecurity Maturity Model Certification (CMMC) Program that not only finalizes the long-anticipated CMMC Rule but also foreshadows what...more
NIST’s “quick-start guide” is designed to assist acquirers as they evaluate the various risks across their network of suppliers, focusing on supply chain tiers, foreign ownership, control or influence (FOCI), provenance,...more
FCC Solicits Comment on a Proposed New Framework for Licensing Space Stations Engaged in In-Space Servicing, Assembly, and Manufacturing: In this Notice of Proposed Rulemaking (NPRM) the Federal Communications Commission (FCC...more
The National Institute of Standards and Technology (NIST) released for public comment a “Draft Interagency Guidance Framework for Considering the Exercise of March In-Rights” (“March-In Framework”) on December 8, 2023...more
The Biden-Harris Administration recently announced various actions to lower healthcare and prescription drug costs. In one action, the National Institute of Standards and Technology (NIST) released in December 2023 a draft...more
The US Department of Defense (DoD) has issued a proposed rule to implement its long-awaited Cybersecurity Maturity Model Certification program (CMMC 2.0). This proposed rule — released on December 26, 2023, and published in...more
On January 4, the USPTO announced the appointment of new leaders for the agency’s policy and communications teams. Sharon Israel will serve as the Chief Policy Officer and Director for International Affairs, and Jack...more
On December 26, the Department of Defense (DoD) published its long-awaited Cybersecurity Maturity Model Certification (CMMC) Program proposed rule, which places comprehensive cybersecurity and information security...more
The Department of Defense (DoD) delivered its proposed Cybersecurity Maturity Model Certification Program rule (CMMC) the day after Christmas this year, including several related guidance documents (listed here). The proposed...more
On December 8, 2023, the National Institute of Standards and Technology (NIST) released the Draft Interagency Guidance Framework for Considering the Exercise of March-In Rights (guidance) to the public for comment. The...more
The Department of Commerce and the National Institute of Standards and Technology are requesting comments on a “draft guidance framework designed to help federal agencies evaluate when it may be appropriate to exercise...more
The Cybersecurity and Infrastructure Security Agency (“CISA”) recently revised its Secure Software Development Attestation Common Form (after receiving over 110 comments on the initial draft), and is seeking additional...more
The Federal Acquisition Regulatory (FAR) Council on Oct. 3, 2023, issued two proposed rules to partially implement President Biden's Executive Order on Improving the Nation's Cybersecurity. The first proposed rule imposes...more
FCC Seeks Comment on Revising Spectrum Sharing Rules for Non-Geostationary Orbit, Fixed-Satellite Service Systems: In this proposed rule, the Federal Communications Commission (FCC or Commission) requests comment on revisions...more
In early August, the National Institute of Standards and Technology released the initial public draft of its Cybersecurity Framework 2.0. The draft is a long-awaited update to a framework that’s been in place for almost 10...more
The National Institute of Standards and Technology (NIST) recently unveiled a proposed update to its Cybersecurity Framework, which was originally developed to provide information security guidelines for “critical...more
Electric vehicle (EV) charging relies on a complex ecosystem involving multiple entities, including utility operators, third-party data network providers, charging infrastructure owners, and the EVs themselves. The high...more
The Federal Trade Commission (FTC or Commission) is seeking comment on an application from the Entertainment Software Rating Board (ESRB), Yoti and SuperAwesome for a new way to obtain parental consent under the Children’s...more
On Wednesday, May 10, 2023, the Food and Drug Administration (FDA) announced the publication of a new discussion paper titled “Using Artificial Intelligence and Machine Learning in the Development of Drug and Biological...more
Earlier this month, the National Telecommunications and Information Administration (NTIA) published its AI Accountability Policy Request for Comment (RFC). The RFC seeks comment on artificial intelligence (AI) system...more
On April 27, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security (DHS) issued a Notice of Agency Information Collection Activities to solicit public comments on a...more
The comment period has opened for the US Department of Commerce’s recently issued CHIPS for America incentive program notice of proposed rulemaking, which lays out funding requirements, incentives, and restrictions for...more
The U.S. Food and Drug Administration (FDA) – in collaboration with the University of Maryland Center of Excellence in Regulatory Science and Innovation (M-CERSI) – recently hosted a one-day virtual public workshop entitled,...more
The FedRAMP Program Management Office is seeking comments on its draft FedRAMP Authorization Boundary Guidance, Version 3.0, released on September 14, 2022. The public comment period currently is open and closes on October...more
On September 22, 2022, the Federal Energy Regulatory Commission (FERC or Commission) issued a Notice of Proposed Rulemaking (2022 NOPR) setting forth proposed utility incentives for expenses and investments relating to...more