Final Draft of NIST SP 800-171A Gives Contractors Something to Sample
Client Alert | 1 min read | 03.01.18
Last week, the National Institute of Standards and Technology (NIST) released its Final Draft of NIST Special Publication (SP) 800-171A, which will again be open for comment through March 23, 2018. First proposed in November, the publication provides guidance to both contractors and agencies regarding how to conduct assessments under the prominent cybersecurity standard NIST SP 800-171, which lays the foundation for how contractors must protect all forms of Controlled Unclassified Information, including Covered Defense Information. The Final Draft may be most notable for what it references but does not actually include: In response to initial comments requesting sample system security plan (SSP) templates, the Final Draft explains that NIST will post sample templates to its Computer Security Resource Center. Not wasting any time, sample templates of both a SSP and Plan of Action & Milestone (POAM) document are already available.
Insights
Client Alert | 9 min read | 07.09.25
In our first alert in our new weekly series on the EU Pharma Package, we provided some important background and general information about the status of the Pharma Package and how the trilogues work. In this second alert, we will discuss the respective positions of the European Commission, the European Parliament and the Council of the European Union with respect to one of the most debated and anxiously anticipated topics on the table, the regulatory data protection (RDP).
Client Alert | 3 min read | 07.08.25
Client Alert | 3 min read | 07.08.25
DOJ and HHS Launch FCA Working Group: Heightened Enforcement Risk for Health Care Entities
Client Alert | 5 min read | 07.08.25