President Trump issued a cybersecurity Executive Order, “Sustaining Select Efforts to Strengthen the Nation’s Cybersecurity” (Trump EO), along with a corresponding Fact Sheet on June 6, 2025. The Trump EO clears some of the...more
6/16/2025
/ Artificial Intelligence ,
Biden Administration ,
China ,
Cloud Computing ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Executive Orders ,
Federal Contractors ,
FedRAMP ,
Government Agencies ,
Internet of Things ,
National Security ,
National Security Agency (NSA) ,
NIST ,
OMB ,
Popular ,
Regulatory Reform ,
Software ,
Supply Chain ,
Trump Administration
On April 3, the Office of Management and Budget (OMB) released two much-anticipated memos that will impact the use and procurement of artificial intelligence (AI) by the federal government, signaling an appetite to move...more
The Trump Administration’s efforts to cut federal spending and advance policy goals will likely trigger an uptick in audits, investigations, and other inquiries targeting private-sector entities. This scrutiny will apply to...more
WHAT: The FAR Council published a proposed rule to incorporate the Controlled Unclassified Information (CUI) Program into the acquisition process and, in doing so, seeks to more clearly define government and contractor roles...more
1/29/2025
/ Controlled Unclassified Information (CUI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Security ,
Executive Orders ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Information Technology ,
National Security ,
NIST ,
Regulatory Agenda ,
Regulatory Freeze ,
Regulatory Requirements ,
Risk Management
Secretary of Defense nominee Pete Hegseth testified during his confirmation hearing on January 14, 2025, that if confirmed*, he intends to use audits to identify potential waste and abuse in defense spending, explaining that...more
1/21/2025
/ Audits ,
Cybersecurity ,
Defense Contracts ,
Department of Defense (DOD) ,
Executive Orders ,
Federal Contractors ,
OIG ,
Presidential Nominations ,
Regulatory Oversight ,
Secretary of Defense ,
Senate Confirmation Hearings ,
Subcontractors ,
Trump Administration
Last year we made some predictions about 2024’s cyber landscape and major issues. Several proved prescient, with incident reporting, CISO scrutiny, SEC aggression, and new regulation of various sectors taking shape as the...more
1/7/2025
/ Artificial Intelligence ,
Chief Information Security Officer (CISO) ,
China ,
Corporate Counsel ,
Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Cybersecurity Maturity Model Certification (CMMC) ,
Department of Defense (DOD) ,
Department of Homeland Security (DHS) ,
Department of Justice (DOJ) ,
DFARS ,
Emerging Technologies ,
FCC ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Intelligence Services ,
Internet of Things ,
Loper Bright Enterprises v Raimondo ,
National Security Agency (NSA) ,
NIST ,
OIG ,
Popular ,
Regulatory Agenda ,
Regulatory Standards ,
SCOTUS ,
TSA ,
Unmanned Aircraft Systems
On December 18, 2024, the Senate passed the National Defense Authorization Act for Fiscal Year 2025 (NDAA), which the House of Representatives passed the previous week. President Biden is expected to sign the bill into law...more
12/19/2024
/ Bid Protests ,
Defense Contracts ,
Department of Defense (DOD) ,
FCC ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Federal Pilot Programs ,
Foreign Adversaries ,
GAO ,
Innovative Technology ,
NDAA ,
Popular ,
Robotics ,
Secretary of Defense ,
Semiconductors ,
Small Business ,
STTR ,
Supply Chain ,
Unmanned Aircraft Systems
Part of the Biden Administration’s push to enhance U.S. cybersecurity capabilities has focused on imposing new requirements on government contractors. The 2023 National Cybersecurity Strategy suggested, for example, that...more
11/22/2024
/ Controlled Unclassified Information (CUI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Maturity Model Certification (CMMC) ,
Department of Defense (DOD) ,
DFARS ,
Disclosure Requirements ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
NIST ,
Risk Management ,
Software ,
Subcontractors ,
Supply Chain ,
TSA
As President-Elect Trump’s second Administration begins in January 2025, businesses face a critical juncture with potential shifts in regulatory focus across industries and sectors including artificial intelligence,...more
11/13/2024
/ Artificial Intelligence ,
Chevron Deference ,
Consumer Financial Protection Bureau (CFPB) ,
Cryptocurrency ,
Data Privacy ,
Department of Defense (DOD) ,
Department of Justice (DOJ) ,
Environmental Protection Agency (EPA) ,
Ethics ,
Federal Contractors ,
Federal Election Commission (FEC) ,
Healthcare ,
International Trade ,
National Security ,
Presidential Elections ,
Regulatory Reform ,
Securities and Exchange Commission (SEC) ,
Toxic Substances Control Act (TSCA) ,
Trump Administration ,
USTelecom
WHAT: On October 15, 2024, the U.S. Department of Defense (DOD) published the final CMMC 2.0 Program rule. DOD’s final rule outlines the mechanisms that DOD will use to prescribe cybersecurity standards for safeguarding...more
WHAT: On October 15, 2024, the U.S. Department of Defense (DOD) will publish the final CMMC 2.0 Program rule. DOD’s final rule outlines the mechanisms that DOD will use to prescribe cybersecurity standards for safeguarding...more
We invite you to join us for an insightful webinar on Best Practices in Cyber Preparedness for Government Contractors and Critical Infrastructure Operators on Wednesday, October 23, 2024, from 12:00 p.m. – 1:00 p.m. EDT....more
10/10/2024
/ Best Practices ,
Continuing Legal Education ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Contractors ,
Incident Response Plans ,
Regulatory Requirements ,
Risk Mitigation ,
Webinars
WHAT: The U.S. Department of Defense (DOD) just published the second of two proposed rules setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The earlier...more
8/16/2024
/ Controlled Unclassified Information (CUI) ,
Corporate Counsel ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Maturity Model Certification (CMMC) ,
Department of Defense (DOD) ,
DFARS ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
NIST ,
Proposed Rules ,
Reporting Requirements
WHAT: The Federal Acquisition Regulatory Council (FAR Council) issued an advanced notice of proposed rulemaking (ANPR) to implement parts of Section 5949 of the James M. Inhofe National Defense Authorization Act (NDAA) for...more
WHAT: On May 2, 2024, the U.S. Department of Defense (DOD) issued a Defense Federal Acquisition Regulation Supplement (DFARS) class deviation related to the cybersecurity standards required for covered contractor information...more
WHAT: On February 16, 2024, the U.S. Department of Defense (DOD) posted a 40-minute video overview of DOD’s proposed requirements for the Cybersecurity Maturity Model Certification (CMMC) program. The video is available here,...more
WHAT: Deputy Attorney General (DAG) Lisa O. Monaco delivered remarks at the University of Oxford in the United Kingdom on “the Promise and Perils of AI.” Her remarks focused on the U.S. Department of Justice’s (DOJ) use of...more
2/21/2024
/ Artificial Intelligence ,
Consumer Financial Protection Bureau (CFPB) ,
Corporate Counsel ,
Cyber Crimes ,
Cybersecurity ,
Department of Justice (DOJ) ,
Equal Employment Opportunity Commission (EEOC) ,
FCC ,
Federal Contractors ,
Federal Trade Commission (FTC) ,
OMB ,
Popular ,
White Collar Crimes
We continue to track developments affecting government contractor cybersecurity and supply chains, as the federal government churns out proposals and rules. Wiley’s supply chain, cyber, government contracts, and national...more
WHAT: On January 11, 2024, the U.S. Department of Defense (DOD) published its National Defense Industrial Strategy (NDIS). In line with DOD’s continued emphasis on modernizing and strengthening the supply chain and...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The proposed rule primarily...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth the requirements for its long-anticipated Cybersecurity Maturity Model Certification 2.0 (CMMC) program. The proposed rule primarily...more
On December 14, 2023, the House of Representatives passed the National Defense Authorization Act for Fiscal Year 2024 (NDAA), following the Senate’s passage a few days earlier. The President is expected to sign the NDAA into...more
12/19/2023
/ Artificial Intelligence ,
China ,
Cuba ,
Department of Defense (DOD) ,
Department of Homeland Security (DHS) ,
Drones ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Federal Information Security Modernization Act (FISMA) ,
FISA ,
Greenhouse Gas Emissions ,
Information and Communication Technology (ICT) ,
National Security ,
NDAA ,
Software ,
Subcontractors ,
Supply Chain ,
Unmanned Aircraft Systems ,
US State Departments
WHAT: As we previously reported here, on October 3, 2023, the Federal Acquisition Regulatory Council (FAR Council) proposed a pair of major cybersecurity rules intended to implement key parts of President Biden’s May 2021...more
10/12/2023
/ Cloud Computing ,
Controlled Unclassified Information (CUI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
DFARS ,
Executive Orders ,
FBI ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Information Technology ,
Internet of Things ,
Software ,
Subcontractors
Wiley’s cyber team talks about cyber incident reporting after a new report from DHS advising Congress on duplication of reporting regimes. With over 50 reporting requirements spread over 20 agencies, federal agencies and the...more
On June 21, 2023, the U.S. Department of Homeland Security (DHS) issued a final rule that revises the Homeland Security Acquisition Regulation (HSAR) to implement security and privacy measures for contractors to safeguard...more