DoD's New Year's Gift: More Time to Meet Cyber Safeguarding Requirements

Client Alert | 1 min read | 12.30.15

On December 30, DoD issued an interim rule amending the DFARS Safeguarding Rule in several respects, including to provide contractors up to December 31, 2017, to comply with the security control requirements identified in DFARS 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident Reporting, and detailed in NIST Special Publication 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations. Despite the additional time to comply, within 30 days of contract award, contractors must still notify the DoD Chief Information Officer of any NIST SP 800-171 security requirements not yet implemented.

Contacts

Kate M. Growley
Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
  - D | +1.202.624.2698
- Washington, D.C. (CGA)
  - D | +1 202.624.2500
a2dyb3dsZXlAY3Jvd2VsbC5jb20=

Insights

Client Alert | 5 min read | 12.02.25

CARB Delays Enforcement of California’s Climate-Related Financial Risk Report Law (SB 261) and Issues New Guidance on Climate Disclosure Requirements in SB 261 and SB 253

As we have reported previously, California has enacted a pair of climate-related reporting laws that apply to large entities doing business in California (SB 253 and SB 261, as modified by SB 219). This alert provides an update on only the most recent events; please see previous alerts for a broader overview of the laws’ requirements....

Client Alert | 11 min read | 12.01.25
EU AI Act, GDPR, and Digital Laws Changes Proposed
Client Alert | 5 min read | 12.01.25
FRCP 16.1 Now in Play for MDLs—Game Changer or Not?
Client Alert | 6 min read | 11.26.25
From ‘Second’ to ‘First:’ Federal Circuit Tackles Obvious Claim Errors

View All Insights