Cyber Regs Toughened Up
Client Alert | less than 1 min read | 03.13.12
As Congress continues to mull competing proposals for new cyber legislation, federal agencies have moved ahead under existing statutory authority to tighten and toughen the regulations and standards governing cybersecurity for government contractors. In a recent Briefing Paper published by Thomson West, David Bodenheimer and Jon Baker of Crowell & Moring address the escalating cyber threats driving this trend, the existing statutory and regulatory framework imposing information security requirements, and the fundamental elements necessary for a sound cybersecurity program -- including compliance procedures, continuous monitoring, and security controls specified by the National Institute of Standards and Technology (NIST).
Contacts
Insights
Client Alert | 13 min read | 06.12.26
The EU Cyber Resilience Act (CRA) is an EU product cybersecurity law for connected products (formally, “products with digital elements” under the CRA) commercialized in the EU; it entered into force on 10 December 2024, with direct application across the EU. Full application begins 11 December 2027, but one of its most operationally demanding provisions takes effect in just under 100 days, on 11 September 2026: the mandatory vulnerability and incident reporting under Article 14 CRA.
Client Alert | 6 min read | 06.11.26
CMS Announces New Medicaid Eligibility Requirements: Implications for Managed Care Plans
Client Alert | 7 min read | 06.11.26
Qatar Rewrites the Playbook: What the New Public M&A Rules Mean for Market Participants
Client Alert | 6 min read | 06.09.26
Is Stock-a-palooza Over? Supreme Court allows SEC to Pursue Disgorgement
