Disharmony in the Cyber Acquisition Patchwork
Client Alert | 1 min read | 05.07.15
While Executive Order No. 13636 asked for a review of "what steps can be taken to harmonize" existing cyber regulations governing federal acquisitions, a patchwork of more than a dozen different agency regulations – and dozens upon dozens of unpublished cyber policies – impose heavy burdens upon contractors seeking to build cost-effective cybersecurity compliance programs. On May 11, C&M's David Z. Bodenheimer will discuss this analysis and lead a co-sponsored program for the ABA Public Contract Law Section's Cybersecurity, Privacy, and Information Security Committee and the Science & Technology Law Section's Homeland Security Committee on "The Cybersecurity Patchwork of Federal Agency Rules & Unpublished Policies: How Do Contractors Comply?"
Insights
Client Alert | 3 min read | 03.12.26
DOJ Releases First-Ever Department-Wide Corporate Enforcement and Voluntary Self-Disclosure Policy
On March 10, 2026, the Department of Justice released the first-ever Department-wide Corporate Enforcement and Voluntary Self-Disclosure Policy (the “Department-wide CEP” or “Policy”), which applies to all non-antitrust corporate criminal cases across the Department. The new policy has been anticipated since December 2025, when Deputy Attorney General Todd Blanche announced the Department’s plans to release a new, single corporate enforcement policy for all criminal matters. According to the Department, the new policy is designed to “help ensure consistency across the Department” and “transparently describe the Department’s policies and decisionmaking.”
Client Alert | 3 min read | 03.12.26
Client Alert | 2 min read | 03.11.26
