Photograph of Kate M. Growley, CIPP/G, CIPP/US

Practices

Education

Florida State University, B.A. (2008) summa cum laude with honors
University of Virginia School of Law, J.D. National Security Law (2011)

Admissions

District of Columbia
Virginia

Languages

French (Intermediate)

Government Contracts – Battening Down the Hatches on Cybersecurity

Click to read this article from
Crowell & Moring's Regulatory Forecast 2019.

Government Contracts Strategic Video Series

Kate Growley - Cybersecurity and the Supply Chain - Part 2

Cybersecurity and the Supply Chain - Part 2
Click here to watch this short video discussing supply chain security.

Kate M. Growley, CIPP/G, CIPP/US

Partner

Washington, D.C.

kgrowley@crowell.com
Phone: +1 202.624.2698
1001 Pennsylvania Avenue NW
Washington, DC 20004-2595

Kate M. Growley (CIPP/US, CIPP/G) is a partner in the Washington, D.C. office of Crowell & Moring. She is a member of the Steering Committee for the firm's Privacy & Cybersecurity Group, while working closely with the firm's Government Contracts and Litigation Groups. Her practice covers a wide range of information security counseling and litigation engagements, including cybersecurity compliance, incident response, regulatory assessments and investigations, and disputes surrounding data breaches and trade secrets.

Kate is a Certified Information Privacy Professional (CIPP) for both the U.S. private and government sectors by the International Association of Privacy Professionals (IAPP). She is also a Registered Practitioner with the Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB). She has been nationally recognized by Chambers Global (2021) and Chambers USA (2020) and named a “Rising Star” by both Law360 (2018) and the American Bar Association's Science & Technology Section (2016). Kate serves as co-chair for both the ABA Public Contract Law Section’s Cybersecurity, Privacy, & Data Protection Committee; and the Science & Technology Section's Homeland Security Committee. She is also a member of the PubK Advisory Board. Most recently, Kate was inducted as a Fellow of the American Bar Foundation.

Kate received her J.D. from the University of Virginia School of Law, where her studies focused on national security. Prior to law school, she graduated first in her class from Florida State University, summa cum laude with honors.

Cybersecurity for Government Contractors

Kate maintains a robust cybersecurity practice focused on the government contracting community, particularly those working with the Department of Defense (DoD). Her recent engagements address issues including:

Crafting and implementing strategies to comply with DFARS 252.204-7012, including drafting system security plans (SSPs) and plans of action & milestones (POAMs).
Preparing contractor self-assessments under the newly implemented DFARS 252.204-7019 and -7020 clauses.
Assisting clients prepare for certifications at all Levels under the DoD Cybersecurity Maturity Model Certification (CMMC).
Helping clients prepare for, participate in, and contest Defense Contract Management Agency (DCMA) Defense Industrial Base Cybersecurity Assessment Center (DIBCAC) assessments.
Assessing whether, when, and how to report cyber incidents to government customers; and responding to subsequent customer inquiries.
Understanding and negotiating cloud service provider and related vendor agreements, including security and reporting requirements under the Federal Risk and Authorization Management Program (FedRAMP) and DoD Cloud Computing Security Requirements Guide (SRG).
Assessing and complying with security obligations under FAR 52.204-21, the NISPOM, Privacy Act, and FISMA, including those stemming from NIST SP 800-171 and NIST SP 800-53.
Evaluating and managing insider threat and supply chain risks, including potential disclosures.
Evaluating entry into formal information sharing programs.
Negotiating voluntary use of government investigation and hunt teams, including with the Department of Homeland Security (DHS), Federal Bureau of Investigation (FBI), National Security Agency (NSA), and Missile Defense Agency (MDA).

Incident Response

On a daily basis, Kate is helping clients manage and respond to cyber incidents. Her practice covers the full incident lifecycle from tailoring incident response plans to finalizing formal notifications. Her work frequently involves close engagement with in-house and third-party forensics firms, as well as regulatory and business stakeholders. Example engagements include:

Represented major technology company in assessing and responding to well-publicized security incident, including assessments of global customer notification obligations and litigation exposure, as well as extensive cooperation with U.S. and foreign law enforcement.
Coordinated strategic response to insider threat issue resulting in potential compromise of trade secrets, as well as sensitive data related to individuals and customer contracts.
Advised national professional services firm in responding to and analyzing legal implications of network compromise potentially linked to an insider threat.
Assisted large manufacturer in responding to security incident stemming from Internet-connected devices provided by third parties, including assessments of potential legal liabilities and assistance with government agency investigations.
Counseled major technology services provider in assessing customer notification obligations associated with large exfiltration of company data to a foreign nation.
Advised international manufacturer regarding crisis management strategy in response to security vulnerability disclosure.
Counseled global manufacturer in assessing legal obligations stemming from globally-publicized ransomware attack.
Represented non-government organization in investigating and remediating security incident implicating personally identifiable information (PII), as well as leading required individual and state Attorney General notifications.

Investigations, Litigation, and Arbitration

In addition to her counseling practice, Kate maintains a steady docket of dispute resolution matters. Her engagements include:

Represented multiple health care plans in regulatory investigations instituted by the Department of Health & Human Services (HHS) Office of Civil Rights (OCR) in response to privacy and security incidents.
Represented large non-profit organization and technology services provider in response to state Attorney General inquiries stemming from security incidents.
Defended health care system in complex class actions stemming from security incident potentially affecting over 4.5 million individuals.
Defended former federal official regarding Bivens liability stemming from post-9/11 PENTTBOM investigation at the trial level and on appeal, including before the Supreme Court of the United States in Ziglar v. Abbasi.
Defended acting foreign official from allegations of terrorism.
Pursued indemnification claim under Public Law 85-804 on behalf of major defense contractor.
Defended insurer against complex cyber coverage claims brought by insured.
Defended Medicare Advantage organization at both the trial and appellate levels in dispute brought by multiple health providers over the exhaustion of administrative remedies.
Represented international hospitality company in federal litigation and related arbitration regarding claims of unfair competition and misappropriation of trade secrets.
Represented software service provider in arbitration regarding contractual and unauthorized access claims, including those brought under the Computer Fraud & Abuse Act (CFAA).

Privacy and Cybersecurity Counseling

Kate also regularly counsels clients on a variety of privacy and information security issues, including:

Artificial intelligence (AI), biometrics and facial recognition, and big data
Autonomous vehicles (AVs)
Cloud migration and other digital transformation initiatives
COVID-19-related privacy and security considerations
Family Educational Rights and Privacy Act (FERPA)
Internet of Things (IoT), including California and Oregon state law and the federal IoT Cybersecurity Improvement Act
New York’s Department of Financial Services (DFS) Cybersecurity Requirements
Payment Card Industry Data Security Standard (PCI DSS)
UAS/UAV (“drone”) regulations

Affiliations

Admitted to practice: District of Columbia and Virginia; U.S. Supreme Court

Highlights, News & Knowledge

View latest items by date

Speeches & Presentations

"Cybersecurity & Privacy," OOPS 2021, Crowell & Moring's 37th Annual Ounce of Prevention Seminar (May 10, 2021). Presenters: Kate M. Growley, Evan D. Wolff, and Michael G. Gruden.
"Anatomy of a Cyber Incident," Investigations: Readiness and Response Webinar Series (April 30, 2021). Presenters: Kate M. Growley, Jeffrey L. Poston, Paul M. Rosen, Evan D. Wolff, and Matthew B. Welling.
"Part 2 - Higher Education and the Biden Administration’s Priorities: Are there significant changes ahead?" Crowell & Moring Webinar (February 16, 2021). Presenters: Kate M. Growley, Laurel Pyke Malson, Preston L. Pugh, Tyler A. O'Connor, Suzanne E. Rode, and Eli Berns-Zieve.
"Government Contracts and the Biden Administration’s Priorities: Significant Changes Ahead?" Crowell & Moring Webinar (January 14, 2021). Presenters: Jonathan M. Baker, Robert A. Burton, Adelicia R. Cliffe, Kate M. Growley, Stephen J. McBrady, Nicole Owren-Wiest, Preston L. Pugh, Rebecca L. Springer, Craig Barrett, Paul Freeman, and Eric M. Ransom.
"What are the legal implications of extended remote work arrangements?" Crowell & Moring Webinar (December 9, 2020). Presenters: Gregory D. Call, Thomas P. Gies, Kate M. Growley, S. Starling Marshall, and Nicole Janigian Simonian.
"Global Cross-Border Data Transfers (Part 2)," Crowell & Moring Webinar (December 3, 2020). Presenters: Kate M. Growley, Ambassador Robert Holleyman, Maarten Stassen, Jarno Vanto, Robert Clifton Burns and Zhiwei Chen.
"Protecting Sensitive Data and the Race for 5G: CFIUS, Team Telecom, the Clean Network program, and the TikTok and WeChat Executive Orders," Crowell & Moring Webinar (October 26, 2020). Presenters: Caroline E. Brown, Adelicia R. Cliffe, and Kate M. Growley.
"Cyber-Insecurity: Understanding DoD’s New Cybersecurity Clauses," Crowell & Moring Webinar (October 14, 2020). Presenters: Evan D. Wolff, Kate M. Growley, and Michael G. Gruden.
"Information Risk Management & Security," Government Contracts "101" - Back to Basics Webinar (September 25, 2020). Presenters: Kate M. Growley, Evan D. Wolff, and Michael G. Gruden.
"Re-opening Your Business During A Pandemic – A Morass of Legal and Practical Issues To Consider," Crowell & Moring Webinar (April 21, 2020). Presenters: Trina Fairley Barlow, Jodi G. Daniel, Ellen Moran Dwyer, Cheryl A. Falvey, John Fuson, Thomas P. Gies, Kate M. Growley, and Nicole Janigian Simonian.
"Focus on Cybersecurity," Women Leaders in Defense and Aerospace Law & Compliance, Washington, D.C. (February 26, 2020). Panelist: Kate M. Growley.
"What Will the New Year Bring for Government Contractors?" Crowell & Moring Webinar (January 29, 2020). Presenters: Crowell & Moring Government Contracts Group.
"Emerging False Claims Act Risks for 2020 and Beyond," Crowell & Moring Webinar (January 15, 2020). Presenters: Crowell & Moring Government Contracts Group.
"Cybersecurity for Contractors," Government Contracts 101 Conference, Tysons Corner, VA (October 23, 2019). Speakers: Stephanie L. Crawford, Kate M. Growley, Peter B. Miller, Evan D. Wolff.
"Cybersecurity for Contractors," Government Contracts "101" - Back to Basics, McLean, VA (October 23, 2019). Moderator: Kate M. Growley; Panelists: Evan D. Wolff, Peter B. Miller, and Stephanie L. Crawford.
"Webinar Series: Safeguarding Your Secrets in the Digital Age - Part 2," Crowell & Moring Webinar (October 8, 2019). Presenters: Kate M. Growley and Julia Milewski.
"Confronting the Challenges of Supply Chain Security," Crowell & Moring Webinar (September 25, 2019). Presenters: Adelicia R. Cliffe, Paul Freeman, Kate M. Growley, and Michael G. Gruden.
"A Mountain of Requirements: Cybersecurity and Privacy for Contractors," Crowell & Moring's Ounce of Prevention Seminar (OOPS) 2019, Washington, DC (May 8, 2019). Moderator: Kate M. Growley; Speakers: Evan D. Wolff and Peter B. Miller.
"Cybersecurity Developments Affecting Government Contracting," ABA's 25th Annual Federal Procurement Institute, Annapolis, MD (March 14, 2019). Panelist: Kate M. Growley.
"Smart Technologies and Privacy," American Bar Association 2018 Women in Products Liability Regional CLE Program, Washington, D.C. (October 25, 2018). Presenter: Kate M. Growley.
"Cybersecurity for Contractors," Government Contracts "101" - Back to Basics, Washington, D.C. (October 10, 2018). Presenters: Evan D. Wolff and Kate M. Growley.
"GDPR and Beyond," Crowell & Moring's Government Contracts Breakfast Series, McLean, VA (September 19, 2018). Presenters: Adelicia R. Cliffe, Evan D. Wolff Maria, Alejandra (Jana) del-Cerro, and Kate M. Growley.
"What Will the New Year Bring: Top Headlines, Headaches, and Developments for Government Contractors to Watch in 2018," Crowell & Moring Webinar (January 25, 2018). Presenters: Crowell & Moring Government Contracts Group.
"Intellectual Property, Information Technology and Cybersecurity," PubKGroup's 3rd Annual Year In Review Webinar (December 7, 2017). Panelist: Nicole Owren-West and Kate M. Growley.
"Cybersecurity for Contractors," Government Contracts "101" - Back to Basics, Washington, D.C. (October 26, 2017). Presenters: Paul M. Rosen, Evan D. Wolff and Kate M. Growley.
"Legal Careers in Cybersecurity, Privacy, and Information Law: An Evening of Networking and Discussions with the Experts on How They Arrived," American Bar Association Cross-Section Program (October 17, 2017). Moderators: David Z. Bodenheimer and Kate M. Growley.
"Cyber and Information Technology Compliance and Lessons Learned," CIECI 2017 Best Practices Forum, Denver, CO (October 9, 2017). Panelist: Kate M. Growley.
"Information Governance & Cybersecurity," Women in E-Discovery, Washington, D.C. (September 20, 2017). Panelist: Kate M. Growley.
"Hurry-Up Offense: Keeping Pace with Information Security and Privacy," OOPS 2017, Crowell & Moring's 33rd Annual Ounce of Prevention Seminar, Washington, D.C. (May 4, 2017). Presenters: Peter B. Miller, Paul M. Rosen, Evan D. Wolff, and Kate M. Growley.
"The Trump Administration's Acquisition Policy Agenda," The Coalition for Government Procurement Webinar (March 15, 2017). Presenters: Robert A. Burton, Stephen J. McBrady, and Kate M. Growley.
ABA Public Contract Law Section’s 3rd Annual Government Perspectives Panel on Cybersecurity, Washington, D.C. (February 22, 2017). Moderator: Kate M. Growley.
"What Will the New Year (and Administration) Bring for Government Contractors?" Crowell & Moring First 100 Days Webinar, Washington, D.C. (January 25, 2017). Presenters: Crowell & Moring Government Contracts Group.
"The Incoming Administration's Acquisition Policy Focus: Analysis & Commentary," 2016 Fall Training Conference, The Coalition for Government Procurement, Washington, D.C. (November 17, 2016). Presenters: Robert A. Burton, Stephen J. McBrady, and Kate M. Growley.
"Legal Careers in Cybersecurity, Privacy, and Information Law: An Evening of Networking and Discussions with the Experts on How They Arrived," American Bar Association Cross-Section Program (October 13, 2016). Moderators: David Z. Bodenheimer and Kate M. Growley. Speaker: Cheryl A. Falvey.
"Cybersecurity Table Top for a Congressional Cyber Security Lab Program," Wilson Center, Washington, D.C. (June 10, 2016). Moderator: Evan D. Wolff. Facilitators: Peter B. Miller, Harvey Rishikof, Maida Oringher Lerner, Elliot Golding, and Kate Growley.
"Regulating Information: Cybersecurity, Internet of Things, & Exploding Rules," OOPS 2016, Crowell & Moring's 32nd Annual Ounce of Prevention Seminar, Washington, D.C. (May 25-26, 2016). Moderator: David Z. Bodenheimer. Panelists: Evan D. Wolff and Kate M. Growley.
"Federal Contracting and Cybersecurity: What Higher Education Institutions Need to Know," Webinar (March 3, 2016). Panelists: Laurel Pyke Malson, Evan D. Wolff, Lorraine M. Campos, Harvey Rishikof and Kate M. Growley.
"What Will the New Year Bring," Crowell & Moring Webinar, Washington, D.C. (January 14, 2016). Presenters: Crowell & Moring Government Contracts Group.
"Government Contracting on the Cybersecurity Frontier: Cyber Landmines, Compliance Risks, and Emerging Rules," American Bar Association Webinar (December 17, 2015). Presenters: David Z. Bodenheimer and Kate M. Growley.
"Understanding Drone Privacy Law Regarding Unmanned Aerial Vehicles (UAVs)," ABA Webinar (December 1, 2015). Moderator: Kate M. Growley.
"Cybersecurity," Women in eDiscovery, Washington, D.C. (October 21, 2015). Presenter: Kate M. Growley.
"Cybersecurity & Data Privacy: Tackling Tough Questions for Federal Agencies & Contractors," Thompson Interactive Webinar (May 7, 2015). Presenters: Kate M. Growley, Gordon Griffin, Yuan Zhou, and Sharmistha Das.
"Cybersecurity Risk Management: The View from Washington and Beyond," OOPS 2015, Crowell & Moring's 31st Annual Ounce of Prevention Seminar, Washington, D.C. (May 5-6, 2015). Moderator: Peter B. Miller; Panelists: Evan D. Wolff, Maida Oringher Lerner, and Kate M. Growley.
"Cybersecurity and Government Contracting: Regulations, Implications and Compliance," Federal Publications Seminars, Washington, D.C. (April 14, 2015). Presenters: David Z. Bodenheimer, Kate M. Growley, Yuan Zhou, and Sharmistha Das.
"Issues Relating to Cybersecurity Rules Affecting Government Contractors," ABA Public Contract Law Section Council Meeting, Washington, D.C. (March 14, 2015). Speaker: Kate M. Growley.
"ABA Young Leaders on Cybersecurity, Privacy, & Information Law: Rapid-Fire Retrospectives on 2014 and Predictions for 2015," ABA's PCL and SciTech Sections, teleconference (December 8, 2014). Panelists: Elliot Golding and Kate M. Growley.
"Cyber Crisis Management: Are You Prepared?" OOPS 2014, Crowell & Moring's 30th Annual Ounce of Prevention Seminar, Washington, D.C. (May 13-14, 2014). Moderator: Evan D. Wolff; Presenters: David Z. Bodenheimer, Kelly T. Currie, and Kate M. Growley.
"Cybersecurity and Data Privacy in 2013: Contracting in a Time of Increased Scrutiny," L2 Federal Resources Webinar (September 19, 2013). Presenters: Gordon Griffin, Elliot Golding, Amelia Schmidt, and Kate Molony.
“Issues in Cybersecurity,” Lecture at University of Virginia’s Sorensen Institute Political Leaders Program (July 13, 2013). Presenters: Kate Molony and Dr. Steven Bucci of the Heritage Foundation.
"Cybersecurity for the Next Generation of Government Contractors," Presentation to L2's NextGen Government Contractors Association (April 30, 2013). Presenters: David Z. Bodenheimer, Gordon Griffin, and Kate Molony.

Publications

"Advancing America’s Dominance in AI: The 2021 National Defense Authorization Act’s AI Developments," The Journal of Robotics, Artificial Intelligence & Law (May 6, 2021). Authors: Jonathan M. Baker, Adelicia R. Cliffe, Kate M. Growley, Laura J. Mitchell Baker, and Michelle D. Coleman.
"National Defense Authorization Act For Fiscal Year 2021: Need-to-Know Provisions For Government Contractors," Government Contracting Law Report (April 27, 2021). Authors: Olivia Lynch, Adelicia R. Cliffe, Jonathan M. Baker, and Kate M. Growley.
"Navigating The SolarWinds Supply Chain Attack," The Procurement Lawyer (March 25, 2021). Authors: Evan D. Wolff, Kate M. Growley, Maida Oringher Lerner, Matthew B. Welling, Michael G. Gruden, and Jacob Canter.
"Last Chance to Comment on FASC Rule – More Supply Chain Restrictions Coming," Crowell & Moring’s Government Contracts Legal Forum (October 27, 2020). Authors: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US and Stephanie L. Crawford.
"Chinese Individual Indicted for Alleged Trade Secret Theft from Semiconductor Company," Crowell & Moring’s Trade Secrets Trends (October 23, 2020). Authors: Kate M. Growley, CIPP/G, CIPP/US and Suzanne Trivette.
"Recent FTC Guidance On The Use Of Artificial Intelligence And Algorithms In The Age Of COVID-19," The Computer & Internet Lawyer (September 2020). Authors: Monty Cooper, Jodi G. Daniel, Kate M. Growley, and Natalie O. Ludaway.
"Companies Protecting Trade Secrets Should Consider Role of NIST’s Enhanced Security Requirements," Crowell & Moring’s Trade Secrets Trends (July 16, 2020). Authors: Kate M. Growley, CIPP/G, CIPP/US, Julia Milewski and Michael G. Gruden, CIPP/G.
"Is Chinese IP Theft Coming to an End?" Crowell & Moring's Trade Secrets Trends (February 25, 2020). Authors: Kate M. Growley, CIPP/G, CIPP/US, Gabriel M. Ramsey, Sari Schreiber and Suzanne Trivette.
"Energy Cybersecurity Act of 2019," Crowell & Moring's Data Law Insights (February 10, 2020). Authors: Evan D. Wolff, Jeffrey L. Poston, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Tyler A. O'Connor and Amber Mulcare, CIPP-US.
"DoD Acquisition Chief Looks Back at the Year that Was and Previews the Year to Come," Crowell & Moring's Government Contracts Legal Forum (December 24, 2019). Authors: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, and Christopher Hebdon.
"Defending Cybersecurity False Claims Act Allegations," Bloomberg Law (September 18, 2019). Authors: Jason M. Crawford, David B. Robbins, Kate M. Growley, and Michael G. Gruden.
"Privacy & Cybersecurity – New York Enacts the SHIELD Act," Crowell & Moring's International Trade Law (August 20, 2019). Authors: Jarno Vanto, Evan D.Wolff, Kate M. Growley, CIPP/G, CIPP/US and Brandon C. Ge.
"NIST Extends Comment Period for Two New Drafts," Crowell & Moring's Data Law Insights (July 15, 2019). Authors: Kate M. Growley, CIPP/G, CIPP/US and Allegra K. Flamm.
"Seventh Circuit Wades into Big Data Case Law," Crowell & Moring's Data Law Insights (March 28, 2019). Authors: Paul M. Rosen, Kate M. Growley, CIPP/G, CIPP/US and Joanne Oleksyk.
"Government Contracts – Battening Down the Hatches on Cybersecurity," Crowell & Moring's Regulatory Forecast 2019 (February 27, 2019). Contributors: Evan D. Wolff and Kate M. Growley.
"DoD Increases DCMA Cybersecurity Responsibilities: DCMA to Implement and Assess Company-Wide Cyber Compliance," Crowell & Moring's Government Contracts Legal Forum (February 21, 2019). Authors: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, Payal Nanavati and Judy Choi.
"NIST Surveys and Assesses Broad Landscape of IoT Cybersecurity Standards in Interagency Report," Crowell & Moring's Data Law Insights (December 26, 2018). Authors: Cheryl A. Falvey, Gabriel M. Ramsey, Kate M. Growley, CIPP/G, CIPP/US, and Paul C. Mathis.
"SEC Encourages Internal Accounting Controls to Guard Against Cyber Fraud," Crowell & Moring's Data Law Insights (November 8, 2018). Authors: Paul M. Rosen, Daniel L. Zelenko, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, and Paul C. Mathis.
"NIST Offers Insight Into Updated Risk Management Framework," Crowell & Moring's Data Law Insights (October 30, 2018). Authors: Peter B. Miller, Kate M. Growley and Michael G. Gruden.
"Navy Boils The Ocean on Cyber," Crowell & Moring's Data Law Insights (October 24, 2018). Authors: Evan D. Wolff, Kate M. Growley and Michael G. Gruden.
"New Internet of Things (IoT) NIST Draft Publication Provides Welcomed Guidance," Crowell & Moring's Data Law Insights (October 17, 2018). Authors: Cheryl A. Falvey, Kate M. Growley and Michael G. Gruden.
"Finally, Cyber Help For Small Businesses Is On Its Way," Law360 (October 1, 2018). Authors: Evan D. Wolff, Paul M. Rosen, Kate M. Growley, and Michael Gruden.
"New Draft NIST Guidance on Systems Security Engineering," Crowell & Moring's Government Contracts Legal Forum (April 24, 2018). Authors: Evan D. Wolff, Peter B. Miller, Maida Oringher Lerner, Kate M. Growley, Judy Choi, Michael G. Gruden and Payal Nanavati.
"State of Play: Digital Transformation – The Sky's the Limit," Crowell & Moring's Regulatory Forecast 2018 (February 2018). Contributors: Cheryl Falvey, Scott Winkelman, Kate Growley, Jeffrey Selman, Jodi Daniel, Evan Wolff, and Robert Holleyman.
"Is Government Data at Risk? Study Finds Industry Cybersecurity Lagging Government," Crowell & Moring's Data Law Insights (February 26, 2018). Authors: Paul M. Rosen, Kate M. Growley and Michael G. Gruden.
"National Archives Issues New, But Limited, CUI Contract Guidance," Crowell & Moring's Data Law Insights (February 8, 2018). Authors: Kate M. Growley and Michael G. Gruden.
"Court Allows Data Breach Claims Against Kimpton," Crowell & Moring's Data Law Insights (April 20, 2017). Authors: Maida Oringher Lerner, Kate M. Growley and Charles D. Austin.
"New OCR Settlement Targets Safety Net Provider on Security Rule Deficiencies," Crowell & Moring's Data Law Insights (April 14, 2017). Authors: Daniel E. Vinish, Maida Oringher Lerner, Stephanie D. Willis and Kate M. Growley.
"CFAA Conviction for Accessing and Damaging Former Employer’s Computer System," Crowell & Moring's Data Law Insights (March 1, 2017). Authors: Jeffrey L. Poston, Kate M. Growley and Charles Austin.
"Inside NHTSA's Proposed Cybersecurity Best Practices," Law360 (November 15, 2016). Authors: Scott L. Winkelman, Peter B. Miller, Kate M. Growley, Danielle Rowan, and Justin Kingsolver.
"Cleared Contractors Under the Gun as Insider Threat Program Deadline Approaches," Bloomberg BNA Insights (November 11, 2016). Authors: Adelicia R. Cliffe, Kate M. Growley, Maida Oringher Lerner, Peter B. Miller, and Evan D. Wolff.
"Insider Threats Meet Litigation," Crowell & Moring's Data Law Insights (September 27, 2016). Author: Kate M. Growley.
"Government Contractor Argues the Insider Threat," Crowell & Moring's Trade Secrets Trends (September 21, 2016). Authors: Andrew W. Bagley and Kate M. Growley.
"U.S. Chamber of Commerce on Trade Secrets Protections," Crowell & Moring's Data Law Insights (September 21, 2016). Author: Kate M. Growley.
"U.S. Chamber of Commerce Calls for Greater Trade Secrets Protection," Crowell & Moring's Trade Secrets Trends (September 20, 2016). Author: Kate M. Growley.
"2nd Circuit: Government Cannot Force Companies to Hand Over Communications Data Stored Overseas," Crowell & Moring's Data Law Insights (July 15, 2016). Authors: Stephen M. Byers, Jeffrey L. Poston, Evan D. Wolff, Kate M. Growley, and Justin Kingsolver.
"The Foreign Sovereign Immunities Act: 2014 Year in Review," Law and Business Review of the Americas (Summer 2016). Authors: Laurel Pyke Malson, Aryeh S. Portnoy, Emily Alban, Shannon Barnard, Kate M. Growley, and Belinda Liu.
"Privacy & Cybersecurity News Update- 3 Week Summary," Crowell & Moring's Data Law Insights (April 26, 2016). Authors: Lisa Weinert, Peter B. Miller, Kate M. Growley, Danielle Rowan, and Justin Kingsolver.
"Privacy & Cybersecurity Weekly News Update," Crowell & Moring's Data Law Insights (January 8, 2016). Authors: Justin Kingsolver and Kate M. Growley.
"The Foreign Sovereign Immunities Act: 2013 Year in Review," Law and Business Review of the Americas (January 5, 2016). Authors: Laurel Pyke Malson, Aryeh S. Portnoy, Birgit Kurtz, Theresa Buckley, Kate M. Growley, Namrata Kotwani, and Ethan W. Simonowitz.
"Unmanned Aerial Vehicles Flying in the New Frontier: Emerging Acquisition, Security, Privacy, and Technology Issues," American Bar Association (Fall 2015). Authors: David Z. Bodenheimer and Kate M. Growley.
"Privacy-Cybersecurity Weekly News Update December 14-18, 2015," Crowell & Moring's Data Law Insights (December 22, 2015). Authors: Justin Kingsolver and Kate M. Growley.
"Privacy-Cybersecurity Weekly News Update December 6- 11, 2015," Crowell & Moring's Data Law Insights (December 16, 2015). Authors: Kate M. Growley and Justin Kingsolver.
"Hello Barbie (and Lawsuit)" Crowell & Moring's Retail & Consumer Products Law Observer (December 11, 2015). Author: Kate M. Growley.
"Privacy-Cybersecurity Weekly News Update November 29- December 4, 2015," Crowell & Moring's Data Law Insights (December 9, 2015). Authors: Kate M. Growley and Justin Kingsolver.
"U.S.-EU Data Transfer Turmoil: What It Means for Universities," Law360 (November 4, 2015). Authors: Laurel Pyke Malson, Jeffrey L. Poston, Robin B. Campbell, Peter B. Miller, Christopher Hoff, and Kate Growley.
"Interim Rule Could Expand Already Onerous DFARS Cyber Requirements," Crowell & Moring's Data Law Insights (August 27, 2015). Authors: Kate M. Growley, Evan D. Wolff, and Maida Oringher Lerner.
"Interim Rule Could Expand Already Onerous DFARS Cyber Requirements," Crowell & Moring's Government Contracts Legal Forum (August 27, 2015). Authors: Kate M. Growley, Maida Oringher Lerner and Evan D. Wolff.
"What The OMB Cybersecurity Proposal Does And Doesn't Do," Law360 (August 19, 2015). Authors: Kate M. Growley, Peter B. Miller, Maida Oringher Lerner, and Evan D. Wolff.
"Three State Data Breach Laws Set to Change This Summer," Crowell & Moring's Data Law Insights (May 27, 2015). Author: Kate M. Growley.
"Supreme Court to Consider Congressionally-Conferred Privacy Breach Standing," Crowell & Moring's Data Law Insights (April 29, 2015). Authors: Jeffrey L. Poston and Kate M. Growley.
"Resolution 101 – The Senate's Position on the Internet of Things," Crowell & Moring's Retail & Consumer Products Law Observer (April 1, 2015). Co-Authors: Kate M. Growley and Elliot Golding.
"The 'Sense of the Senate' is Pro-Internet of Things," Crowell & Moring's Data Law Insights (March 26, 2015). Co-Authors: Elliot Golding and Kate M. Growley.
"Cyber Executive Order Continues the Push for Public-Private Partnerships," Crowell & Moring's Data Law Insights (February 23, 2015). Authors: Evan D. Wolff, Peter B. Miller, Kate M. Growley, and Maida Oringher Lerner.
The Foreign Sovereign Immunities Act: 2012 Year in Review, Law and Business Review of the Americas, Vol. 20 (Fall 2014). Co-Authors: Laurel Pyke Malson, Jesse Kirchner, Joanna Coyne, Aryeh S. Portnoy, Kate M. Growley, Namrata Kotwani, Amal Bouhabib, Louisa K. Marion, and Moreen O’Brien.
"Industry Collaborations on Cybersecurity: Protecting Against Antitrust Violations," ABA Section of Criminal Justice, Vol. 29, No. 3 (Fall 2014). Co-Authors: Evan D. Wolff, David Laing, Kate M. Growley, and Elizabeth Blumenfeld.
"View From Crowell & Moring: Getting Ahead of the DFARS Safeguarding Clause," Bloomberg BNA Federal Contracts Report (September 9, 2014). Co-Authors: David Z. Bodenheimer, Evan D. Wolff, and Kate M. Growley.
"DOJ and FTC Help Pave the Way For Greater Cyber Information Sharing in the Private Sector," Bloomberg BNA Antitrust & Trade Regulation Report (July 11, 2014). Co-Authors: David Laing, Evan D. Wolff, Elizabeth Blumenfeld, and Kate M. Growley.
"White House Report on Big Data Seeks Legislative and Executive Action," Crowell & Moring's E-Discovery Law Insights (May 6, 2014). Author: Kate M. Growley.
"The FTC 'Pins' Cole Haan on Pinterest Campaign: Disclosure of Contest Driving Endorsement of Products Required," Crowell & Moring's Retail & Consumer Products Law Observer and The Secure Times, ABA Section of Antitrust Law Privacy & Information Security Committee (April 28, 2014). Co-Authors: Cheryl A. Falvey and Kate M. Growley.
"The 'Cyber Framework' Arrives," Crowell & Moring's Government Contracts Legal Forum (February 13, 2014). Co-Authors: David Z. Bodenheimer, Evan D. Wolff, Elliot Golding, and Kate M. Growley.
"The Growing Transparency Into National Security Letters," The Secure Times, ABA Section of Antitrust Law Privacy & Information Security Committee (February 6, 2014). Author: Kate M. Growley.
"Amidst a Swirling Privacy Debate, Transparency is Crucial," Crowell & Moring's E-Discovery Law Insights (December 13, 2013). Co-Authors: Kate Molony and Elizabeth Blumenfeld.
"White House Previews Potential Incentives for Voluntary Cyber Framework," Crowell & Moring's Government Contracts Legal Forum (September 11, 2013). Co-Authors: Kate Molony and Elizabeth Blumenfeld.
"Cybersecurity and Data Privacy in 2013: Contracting in a Time of Increased Scrutiny," Crowell & Moring's Government Contracts Legal Forum (August 23, 2013). Author: Kate Molony.
"Cybersecurity and Data Privacy in 2013: Contracting in a Time of Increased Scrutiny," Crowell & Moring's E-Discovery Law Insights (August 23, 2013). Co-Authors: Kate Molony, Gordon Griffin, Amelia Schmidt, and Elliot Golding.
"How Quickly 120 Days Pass – Deadline for Cyber EO," Crowell & Moring's Government Contracts Legal Forum (June 14, 2013). Author: Kate Molony.
"Influential Senators Propose Bipartisan Deter Cyber Theft Act," Crowell & Moring's E-Discovery Law Insights (May 9, 2013). Author: Kate Molony.
"Gagging the FBI – The Unconstitutionality of National Security Letters," Crowell & Moring's E-Discovery Law Insights (April 16, 2013). Author: Kate Molony.
"Cybersecurity Receives Presidential Push with New Cyber Executive Order," Crowell & Moring's Government Contracts Legal Forum (February 14, 2013). Co-Authors: Gordon Griffin, Kate Molony, and David Z. Bodenheimer.
"New Cyber Breach Amendment Raises Questions for Cleared Contractors," Crowell & Moring's Government Contracts Legal Forum (December 10, 2012). Co-Authors: Kate Molony and David Z. Bodenheimer.
"CISPA Faces Uphill Battle," Crowell & Moring's Government Contracts Legal Forum (May 9, 2012). Author: Kate Molony.
The Foreign Sovereign Immunities Act: 2010 Year in Review, Law and Business Review of the Americas (Spring 2012). Co-Authors: Aryeh S. Portnoy, Laurel Pyke Malson, Moreen O’Brien, Jesse J. Kirchner, Amal Bouhabib, Louisa Marion, and Kate M. Growley.
"Proposed Defense Budget Reflects National Security Priorities," Crowell & Moring's Government Contracts Legal Forum (February 9, 2012). Author: Kate Molony.

Client Alerts & Newsletters

"Byte-Sized Q&A: What are the DoD’s Requirements for Cloud Services?," Podcast: Byte-Sized Q&A (May 17, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Christopher R. Hebdon
"Biden Administration Orders Sweeping Directives to Federal Agencies and Contractors to Improve U.S. Cybersecurity," Privacy Law Alert (May 13, 2021). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Gabriel M. Ramsey, Paul M. Rosen, Michael G. Gruden, CIPP/G, Maida Oringher Lerner
"Byte-Sized Q&A: Tell me about FedRAMP," Podcast: Byte-Sized Q&A (May 6, 2021). Contact: Kate M. Growley, CIPP/G, CIPP/US
"Byte-Sized Q&A: What are the basics of NIST SP 800-53?," Podcast: Byte-Sized Q&A (April 23, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"Byte-Sized Q&A: What About Controlled Technical Information?," Podcast: Byte-Sized Q&A (April 5, 2021). Contact: Kate M. Growley, CIPP/G, CIPP/US
"Byte-Sized Q&A: What is Covered Defense Information?," Podcast: Byte-Sized Q&A (March 22, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Byte-Sized Q&A: What is Controlled Unclassified Information?," Podcast: Byte-Sized Q&A (March 8, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Virginia Consumer Data Protection Act (S.B. 1392)," Privacy Law Alert (March 3, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Jeffrey L. Poston, Jarno Vanto, CIPP/E, CIPP/US, Evan D. Wolff, Maida Oringher Lerner
"New Biden EO Keeps Focus on Supply Chain Security for Critical Industries," Biden First 100 Days Series (February 26, 2021). Contacts: Michael K. Atkinson, Adelicia R. Cliffe, Alan W. H. Gourley, Kate M. Growley, CIPP/G, CIPP/US, Byron R. Brown, Joshua Boswell
"Byte-Sized Q&A: What is Federal Contract Information?," Podcast: Byte-Sized Q&A (February 22, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"FTC Sharpens Focus on Biometrics with Facial Recognition Settlement," Advertising & State AG Alert (February 9, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Helen Osun
"NIST Finalizes Enhanced Security Requirements for Combating Advanced Cyber Threats," Government Contracts Bullet Points (February 9, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"Byte-Sized Q&A: What is an APT?," Podcast: Byte-Sized Q&A (February 8, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"Newly Proposed Cyber Reporting Rules for Banking Organizations," Privacy Law Alert (February 1, 2021). Contacts: Caroline E. Brown, Kate M. Growley, CIPP/G, CIPP/US, Paul M. Rosen, Paul C. Mathis
"Byte-Sized Q&A: The CIA Triad," Podcast: Byte-Sized Q&A (January 25, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"NIST Keeps IoT Hot with Draft Guidance," Government Contracts Bullet Points (January 22, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Paul C. Mathis
"FCC Publishes Telecommunications Supply Chain Security Rule," Government Contracts Bullet Points (January 21, 2021). Contacts: Caroline E. Brown, Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Stephanie L. Crawford
"DoD and GSA Take Aim at Supply Chain Risks," Government Contracts Bullet Points (January 15, 2021). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"Advancing America’s Dominance in AI: The 2021 National Defense Authorization Act’s AI Developments," Government Contracts Bullet Points (January 14, 2021). Contacts: Jonathan M. Baker, Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Laura J. Mitchell Baker, Michelle D. Coleman
"National Defense Authorization Act for Fiscal Year 2021: Need-to-Know Provisions for Government Contractors," Government Contracts Bullet Points (January 12, 2021). Contacts: Charles Baek, Jonathan M. Baker, Adelicia R. Cliffe, Stephanie L. Crawford, Peter Eyre, Christopher D. Garcia, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, J. Chris Haile, Olivia Lynch, Nicole Owren-Wiest, Michael E. Samuels
"Byte-Sized Q&A: Why is I-O-T so H-O-T?," Podcast: Byte-Sized Q&A (January 11, 2021). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"FCC Reverses Precedent, Rules that Government Contractors Are Subject to the TCPA," Government Contracts Bullet Points (December 21, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Jeffrey L. Poston, Evan D. Wolff, Brandon C. Ge
"DoD’s Stocking Stuffer: Defense Department Announces Proposed CMMC Pilot Programs," Government Contracts Bullet Points (December 21, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Byte-Sized Q&A: What is NIST?," Podcast: Byte-Sized Q&A (December 14, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"IoT Goes Federal under Newly Signed Law," Government Contracts Bullet Points (December 10, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Jeffrey L. Poston, Evan D. Wolff
"The DoD's Own Cyber Monday: Defense Department Releases CMMC Assessment Guides," Government Contracts Bullet Points (December 9, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Nkechi Kanu, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"Executive Order 13960 Establishes Government-wide Principles for its Use of AI," Government Contracts Bullet Points (December 7, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Adelicia R. Cliffe, Jonathan M. Baker, Michelle D. Coleman, Laura J. Mitchell Baker
"Byte-Sized Q&A: Why is Everyone Talking about November 30?," Podcast: Byte-Sized Q&A (November 30, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"Department of Education Issues Notice "Clarifying" its Authority to Enforce Section 117 Reporting Requirements," (November 23, 2020). Contacts: Laurel Pyke Malson, Kate M. Growley, CIPP/G, CIPP/US, Eli Berns-Zieve
"The Government’s Momentum in Ensuring Dominance in AI Continues as OMB Issues Guidance for Regulation of AI Applications," Government Contracts Bullet Points (November 19, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Adelicia R. Cliffe, Jonathan M. Baker, Michelle D. Coleman
"Last Chance to Comment on FASC Rule – More Supply Chain Restrictions Coming," Government Contracts Bullet Points (October 28, 2020). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Stephanie L. Crawford
"Fastest 5 Minutes: DFARS Interim Cybersecurity Rule (October 9)," Podcast: Fastest 5 Minutes in Government Contracts (October 9, 2020). Contacts: Peter Eyre, Kate M. Growley, CIPP/G, CIPP/US
"Buy 1 Get 2 Free Special on Cyber Regulations: DoD Interim Rule Unveils 3 New Clauses Geared at Cybersecurity Assessments," Privacy Law Alert (September 29, 2020). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"JAIC Has More Work To Do in Developing Artificial Intelligence Standards, while DoD Components and Contractors Must Implement Security Controls Around Artificial Intelligence, Says DoD OIG," Government Contracts Bullet Points (July 9, 2020). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Laura J. Mitchell Baker, Michelle D. Coleman
"NIST Enhances Final Draft of NIST SP 800-172, Enhanced Security Requirements," Government Contracts Bullet Points (July 8, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"Recent FTC Guidance on the Use of Artificial Intelligence and Algorithms in the Age of COVID-19," Privacy Law Alert (May 26, 2020). Contacts: Monty Cooper, Jodi G. Daniel, Kate M. Growley, CIPP/G, CIPP/US, Natalie O. Ludaway
"DoD’s Joint Artificial Intelligence Center Seeks Tools to Test Artificial Intelligence," Government Contracts Bullet Points (April 27, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Laura J. Mitchell Baker, Michelle D. Coleman
"Tele-Hacking: Video Conference Hijacking and Steps You Can Take To Mitigate The Risk and Respond," Privacy Law Alert (April 3, 2020). Contacts: Evan D. Wolff, Paul M. Rosen, Gabriel M. Ramsey, Kate M. Growley, CIPP/G, CIPP/US, Matthew B. Welling, Kayvan M. Ghaffari
"CCPA Enforcement on Track for July 1, 2020: Breaking Down the Latest Revisions to CCPA Proposed Regulations," Privacy Law Alert (April 1, 2020). Contacts: Jeffrey L. Poston, Kate M. Growley, CIPP/G, CIPP/US, Paul M. Rosen, Kristin J. Madigan, CIPP/US, Jarno Vanto, CIPP/E, CIPP/US
"Welcomed Guidance: DoD Issues Controlled Unclassified Information (CUI) Program Instructions," Government Contracts Bullet Points (March 31, 2020). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Just in Time for Spring: Revision 2 to NIST SP 800-171 Comes into Full Bloom," Government Contracts Bullet Points (March 12, 2020). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"The JAIC Rolls Out DoD’s Ethical Principles for Artificial Intelligence," Government Contracts Bullet Points (March 6, 2020). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Laura J. Mitchell Baker, Michelle D. Coleman
"Draft NIST Guidance Highlights Supply Chain Fundamentals as Key Practices in Cyber Supply Chain Risk Management," Government Contracts Bullet Points (February 21, 2020). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Stephanie L. Crawford, Michael G. Gruden, CIPP/G
"No More "Wait & See" for CMMC: DoD Releases Final Cybersecurity Maturity Model Certification," Government Contracts Bullet Points (February 3, 2020). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"NIST Floats Revised IoT Guidance as California Law Goes Into Effect," Privacy Law Alert (January 28, 2020). Contacts: Cheryl A. Falvey, Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Jeffrey L. Poston, Paul M. Rosen, Paul C. Mathis
"DoD Previews Final Cybersecurity Maturity Model Certification with Revision 0.7," Government Contracts Bullet Points (December 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, Christopher R. Hebdon
"The Gift that Keeps on Giving: FAR Council Attempts to Reduce Burden of Representation Requirement for Covered Telecommunication Offerings," Government Contracts Bullet Points (December 16, 2019). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, Stephanie L. Crawford, Laura J. Mitchell Baker
"Supply Chain Perspectives — Connecting the Dots on Supply Chain Security and Risk Management," Government Contracts Bullet Points (December 2, 2019). Contacts: Adelicia R. Cliffe, Peter Eyre, Kate M. Growley, CIPP/G, CIPP/US, Nicole Owren-Wiest, Paul Freeman, Michael G. Gruden, CIPP/G
"Secretary of Defense Esper Calls on Private Sector to Join Forces with DoD in the Development of AI," Government Contracts Bullet Points (November 21, 2019). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Laura J. Mitchell Baker, Michelle D. Coleman
"Immaturity of the Cybersecurity Maturity Model: Revisions Omit Higher-Level Updates," Government Contracts Bullet Points (November 13, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Let's Talk FCA: Cybersecurity Risks (October 2019)," Podcast: Let's Talk FCA (October 15, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Mana Elihu Lombardo
"Zero Hour: Contractors Face Increased FCA Exposure for Cybersecurity Noncompliance," False Claims Bullet Points (September 25, 2019). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"NIST Announces Plan for Federal Engagement in Artificial Intelligence," Government Contracts Bullet Points (September 20, 2019). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Laura J. Mitchell Baker, Michelle D. Coleman
"Cybersecurity Maturity Model Matures: DoD Adds New Requirements to Draft Cybersecurity Certification," Government Contracts Bullet Points (September 10, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Supply Chain Perspectives — Connecting the Dots on Supply Chain Security and Risk Management," Government Contracts Bullet Points (August 22, 2019). Contacts: Adelicia R. Cliffe, Peter Eyre, Kate M. Growley, CIPP/G, CIPP/US, Paul Freeman, Michael G. Gruden, CIPP/G
"New York Enacts the SHIELD Act," Privacy Law Alert (August 20, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Jarno Vanto, CIPP/E, CIPP/US, Evan D. Wolff, Brandon C. Ge
"Under the Wire: FAR Council Announces Interim Rule to Implement NDAA Procurement Ban on Huawei and Other Chinese Telecommunications Equipment," Government Contracts Bullet Points (August 13, 2019). Contacts: Adelicia R. Cliffe, Paul Freeman, Alan W. H. Gourley, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Uncontrolled Information: DoD Audit Finds Contractor Lapses in Protecting Controlled Unclassified Information," Government Contracts Bullet Points (August 2, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"NIST Publishes Cybersecurity Framework Smart Grid Profile," Energy Law Alert (July 29, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Matthew B. Welling
"DCMA Revises Cyber Supply Chain Review: Updated Guidebook Modifies Audit Standards," Government Contracts Bullet Points (July 16, 2019). Contacts: Evan D. Wolff, Nicole Owren-Wiest, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance," Government Contracts Bullet Points (July 2, 2019). Contacts: Cheryl A. Falvey, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Double Whammy: NIST Unveils Draft Enhanced Security Requirements and Revisions to NIST SP 800-171," Government Contracts Bullet Points (June 21, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Previews New Third-Party Cyber Certification Requirements," Government Contracts Bullet Points (June 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Oregon Latest State to Require Reasonable Security for IoT Devices," Regulatory Alert (June 7, 2019). Contacts: Cheryl A. Falvey, Kate M. Growley, CIPP/G, CIPP/US
"The U.S. Announces Endorsement of OECD’s Principles for Responsible AI," Government Contracts Bullet Points (June 4, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kris D. Meade, Rebecca L. Springer, Laura J. Mitchell Baker, Michelle D. Coleman
"More Storms Ahead for the Defense Sector Supply Chain? GAO to Conduct Review of Climate Change-Driven Security Risks," Government Contracts Bullet Points (May 29, 2019). Contacts: Paul Freeman, Robert Meyers, Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Peter Eyre
"New Executive Order on IT Supply Chain Takes Aim at Huawei and Others, Poses Significant Implications for Government Contract Supply Chains," Government Contracts Bullet Points (May 16, 2019). Contacts: Paul Freeman, Adelicia R. Cliffe, Peter Eyre, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"New Jersey Passes Updated Data Breach Law," Privacy Law Alert (May 16, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Rebecca Monck Ricigliano
"Navy Identifies Defense Industrial Base Cyber Shortcomings in New Report," Government Contracts Bullet Points (March 22, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DCMA’s Cybersecurity Oversight Takes Shape: Revised CPSR Guidebook Outlines DFARS Safeguarding Clause Audit Standards," Government Contracts Bullet Points (March 6, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Nicole Owren-Wiest, Evan D. Wolff, Maida Oringher Lerner, Christopher D. Garcia, Michael G. Gruden, CIPP/G
"The U.S. Takes Steps to Ensure Its Dominance in the AI Arms Race," Government Contracts Bullet Points (February 15, 2019). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Laura J. Mitchell Baker, Michelle D. Coleman
"Upping the Cyber Oversight Ante: DoD Deploys DCMA to Audit Contractor Supply Chain Compliance," Government Contracts Bullet Points (January 28, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Nicole Owren-Wiest, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"California Department of Justice Announces Public Forums on California Consumer Privacy Act (CCPA) as Part of Rulemaking Process," Privacy Law Alert (January 4, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Jeffrey L. Poston, Paul M. Rosen
"Lessons From the House Report on the Equifax Breach," Privacy Law Alert (December 20, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Kristin J. Madigan, CIPP/US, Jeffrey L. Poston, Paul M. Rosen, Evan D. Wolff
"DoD's Own Cyber Monday Deal: Releasing DFARS Cyber Enhancement Guidance," Government Contracts Bullet Points (November 27, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Navy Makes Waves By Increasing Cybersecurity Requirements for Select Defense Industrial Base Contractors," Government Contracts Bullet Points (November 1, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Michael G. Gruden, CIPP/G
"New National Cyber Strategy Outlines President's Cyber Agenda," Privacy Law Alert (October 5, 2018). Contacts: Evan D. Wolff, Paul M. Rosen, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"California Enacts First IoT Security Law in U.S.," Regulatory Alert (October 2, 2018). Contacts: Cheryl A. Falvey, Kate M. Growley, CIPP/G, CIPP/US, Molly A. Jones
"Finally Heard – Cyber Help for Small Businesses is on Its Way," Government Contracts Bullet Points (August 22, 2018). Contacts: Evan D. Wolff, Paul M. Rosen, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"FY 2019 NDAA – Cyber Focus," Government Contracts Bullet Points (August 20, 2018). Contacts: Evan D. Wolff, Paul M. Rosen, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Deliver Uncompromised – or Else? DoD Considers Elevating Security in its Procurement Process," Government Contracts Bullet Points (August 14, 2018). Contacts: Adelicia R. Cliffe, Peter Eyre, Paul M. Rosen, Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"Legislation to Stop Threatening Drones in Their Tracks," Privacy Law Alert (July 31, 2018). Contacts: Cheryl A. Falvey, Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Stephanie L. Crawford
"Relying On 'Seismic Shifts In Digital Technology,' Supreme Court Requires Probable Cause For Historical Cellphone-Location Data," White Collar Alert (June 25, 2018). Contacts: Nimrod Haim Aviad, Kate M. Growley, CIPP/G, CIPP/US, Rebecca Monck Ricigliano, Paul M. Rosen, Matt Gander, Christopher D. Garcia
"NIST Offers a Two-for-One Special on Cybersecurity Updates," Government Contracts Bullet Points (June 20, 2018). Contacts: Paul M. Rosen, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Forget The Showers. April Brings Flurry of New Cyber Guidance.," Government Contracts Bullet Points (May 1, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Final Draft of NIST SP 800-171A Gives Contractors Something to Sample," Government Contracts Bullet Points (March 1, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"National Archives Issues Non-FAR-Based Guidance for Controlled Unclassified Information," Government Contracts Bullet Points (February 13, 2018). Contacts: Evan D. Wolff, Paul M. Rosen, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"No Post-Thanksgiving Break for Cyber – DoD and NIST Publish New Guidance," Government Contracts Bullet Points (December 1, 2017). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Paul M. Rosen, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Gag Orders on Tech Companies: A Higher Burden on Prosecutors," Privacy Law Alert (November 20, 2017). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Paul M. Rosen, Christopher D. Garcia
"DOT and NHTSA Release New “2.0” Guidance for Automated Vehicles," (September 14, 2017). Contacts: Paul M. Rosen, Matthew Cohen, Kate M. Growley, CIPP/G, CIPP/US
"DoD Meets Contractors Half-Way at Industry Information Day," Government Contracts Bullet Points (June 28, 2017). Contacts: Evan D. Wolff, Paul M. Rosen, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Home Depot Settles Major Data Breach Suit with Financial Institutions for $25 Million," Privacy Law Alert (March 13, 2017). Contacts: Justin Kingsolver, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"This Month in International Trade — February 2017," International Trade Bulletin (March 9, 2017). Contacts: John B. Brew, Frances P. Hadfield, Edward Goetz, Jeffrey L. Snyder, Carlton Greene, David (Dj) Wolff, Ian A. Laird, Lorraine M. Campos, Sarah Bartle, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Eduardo Mathison
"NYDFS Implements First-In-The-Nation Cybersecurity Rule for Covered Financial Services Companies," (February 28, 2017). Contacts: Evan D. Wolff, Carlton Greene, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Beating Others to the Punch, DHS Proposes CUI Changes to Acquisition Regulations," Government Contracts Bullet Points (February 7, 2017). Contacts: Daniel R. Forman, Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"Executive Order Targets Privacy Protections for Non-U.S. Persons," Privacy Law Alert (February 2, 2017). Contacts: Jeffrey L. Poston, Evan D. Wolff, Frederik Van Remoortel, Kate M. Growley, CIPP/G, CIPP/US
"NIST Updates Cybersecurity Framework (CSF)," Privacy Law Alert (January 18, 2017). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Matthew B. Welling
"Standardizing Federal PII Breach Response: OMB Updates Guidance for Agencies, Contractors, and Grant Recipients," Government Contracts Bullet Points (January 11, 2017). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Nkechi Kanu
"Privacy for Everyone! New FAR Rule Imposes Mandatory Training Requirements for Employees Handling PII," Government Contracts Bullet Points (December 28, 2016). Contacts: Gail D. Zirkelbach, Peter Eyre, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Nkechi Kanu
"Cleared Contractors Under the Gun As Insider Threat Program Deadline Approaches," Government Contracts Bullet Points (November 17, 2016). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Evan D. Wolff
"NHTSA Proposes Cybersecurity Best Practices for Automakers," Privacy Law Alert (November 1, 2016). Contacts: Scott L. Winkelman, Danielle Rowan, Justin Kingsolver, Kate M. Growley, CIPP/G, CIPP/US
"The Wait Is Over: Final DFARS Safeguarding Rule Published Today," Government Contracts Bullet Points (October 21, 2016). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Cyber Commission Seeks Public Comments on Enhancing Cybersecurity in the Digital Economy," Privacy Law Alert (August 12, 2016). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Presidential Policy Directive Lays Groundwork for National Incident Response Plan," Privacy Law Alert (July 28, 2016). Contacts: Evan D. Wolff, Jeffrey L. Poston, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Charles Baek
"Setting the Floor: New FAR Rule Defines Minimum Contractor Information System Safeguarding," Government Contracts Bullet Points (May 17, 2016). Contacts: Alan W. H. Gourley, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"The Federal and Corporate Cybersecurity Landscape," Government Contracts Bullet Points (February 22, 2016). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"President's Cyber Action Plan Once Again Spotlights the Private Sector," Privacy Law Alert (February 10, 2016). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Matthew B. Welling
"DoD's New Year's Gift: More Time to Meet Cyber Safeguarding Requirements," Government Contracts Bullet Points (December 30, 2015). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"White House Issues Cybersecurity Plan for Agencies and Contractors," Government Contracts Bullet Points (November 3, 2015). Contacts: Peter Eyre, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"EU-U.S. Data Transfer Turmoil: What It Means for Colleges and Universities," Privacy Law Alert (November 2, 2015). Contacts: Laurel Pyke Malson, Jeffrey L. Poston, Kate M. Growley, CIPP/G, CIPP/US
"Final Rule on Supply Chain Risk Fails to Provide Additional Guidance, Protection, or Relief from Uncertain Application," Government Contracts Bullet Points (November 2, 2015). Contacts: Adelicia R. Cliffe, Alan W. H. Gourley, Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff
"DoD Issues Long-Awaited Interim Rule on Cyber Requirements and Cloud Services," Government Contracts Bullet Points (September 3, 2015). Contacts: Evan D. Wolff, Peter Eyre, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Olivia Lynch
"What the OMB Cybersecurity Proposal Does and Doesn't Do," Government Contracts Bullet Points (August 28, 2015). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Third Circuit Upholds the FTC's Authority to Regulate 'Unfair' Data Security Practices," Privacy Law Alert (August 26, 2015). Contacts: Jeffrey L. Poston, Christopher A. Cole, Kate M. Growley, CIPP/G, CIPP/US
"Economic Espionage Poses Real Risks and New Burdens for Universities," Privacy Law Alert (July 6, 2015). Contacts: Laurel Pyke Malson, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Inching Towards Uniformity – Proposed Rule Governing Controlled Unclassified Information," Government Contracts Bullet Points (May 14, 2015). Contacts: Alan W. H. Gourley, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Cyber Executive Order Continues the Push for Public-Private Partnerships," Privacy Law Alert (February 20, 2015). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Are You Cyber Secure Under the DFARS Rule?," Government Contracts Bullet Points (September 17, 2014). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"Florida Paves the Way For More Stringent State Data Breach Laws," Privacy Law Alert (June 26, 2014). Contacts: Jeffrey L. Poston, Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"Another University Data Breach Adds to Growing Trend," Regulatory Alert (February 20, 2014). Contacts: Jeffrey L. Poston, Laurel Pyke Malson, Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"NIST Releases Cybersecurity Framework," Government Contracts Bullet Points (February 12, 2014). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US
"Cybersecurity Gets a Presidential Push in New EO," Government Contracts Bullet Points (February 14, 2013). Contacts: Jonathan M. Baker, Kate M. Growley, CIPP/G, CIPP/US

Media Mentions

Acting Pentagon Chief Signs Out 'Cyberspace Accountability' Directive
November 25, 2020 — Inside Defense
Pentagon To Require New Cybersecurity 'Certification' From Defense Contractors
May 31, 2019 — Inside Defense
What Contractors Should Expect From The Trump Administration
January 27, 2017 — Federal News Radio
Rule Targets Contractors' Use of Controlled Unclassified Info
November 8, 2016 — Bloomberg BNA
Insights From the Women of Cybersecurity
Spring 2016 — American Bar Association
The Federal and Corporate Cybersecurity Landscape
February 10, 2016 — Federal News Radio
5 Things Contractors Should Care About in 2016
January 18, 2016 — Federal News Radio
Government Contracts Group of the Year: Crowell & Moring
January 6, 2016 — Law360
Expert Tells Federal Contractors to Play It Safe, Invest in Compliance
May 12, 2015 — Bloomberg BNA
Defense Contractors Don't Want to Say When They've Been Hacked
December 13, 2012 — Mother Jones

Firm News & Announcements

Mar.02.2021	Crowell & Moring Achieves CMMC Registered Provider Organization Status
Feb.23.2021	Chambers Ranks Three Practice Groups and Ten Lawyers in 2021 Global Guide
Apr.23.2020	Chambers USA 2020 Ranks 53 Crowell & Moring Lawyers and 21 Practice Areas Among Best in U.S.
Jan.02.2020	Crowell & Moring Elects Eight New Partners and Promotes Seven to Senior Counsel and 26 to Counsel Positions
Feb.22.2019	Law360 Names Crowell & Moring's Government Contracts Group a "Practice Group of the Year" for the Ninth Consecutive Year
Aug.22.2018	Crowell & Moring Counsel Kate Growley Named a Law360 2018 Cybersecurity & Privacy 'Rising Star'
Jan.09.2017	Crowell & Moring Elects Six New Partners and Promotes 19 Associates to Counsel
Jan.09.2015	Crowell & Moring's Government Contracts Group Named to Law360's "Practice Groups of the Year" for Fifth Consecutive Year
Jun.05.2014	Crowell & Moring Releases "Data Law Trends & Developments" Report