DOD Proposed New Cybersecurity Rules

Client Alert | 1 min read | 03.08.10

On March 3, DoD issued a notice of, and requested comments on, proposed rules levying information security requirements for safeguarding unclassified "DoD information" and reporting security breaches when contractors and subcontractors may have such information "resident on or transiting" their information systems. The proposed rule not only mandates that contractors "shall provide adequate security to safeguard DoD information," but also (1) requires flowdown to subcontractors; (2) establishes extreme standards in some areas (e.g., "best level of security and privacy available"); (3) incorporates National Institute of Standards and Technology (NIST) standards in some areas, but not others; and (4) acknowledges that the contractor will still need to comply with all other applicable security standards, such as "CPI, PII, For Official Use Only, Privacy Act, ITAR, EAR, and HIPAA."

Contacts

Adelicia R. Cliffe
Partner
She/Her/Hers
- Washington, D.C.
  - D | +1.202.624.2816
YWNsaWZmZUBjcm93ZWxsLmNvbQ==

Insights

Client Alert | 5 min read | 10.20.25

What’s new for Belgian Construction Contracts under the New Book 7 of the Civil Code

In recent years, there has been a wave of new legislation impacting contracts and contractual terms. The Belgian legislator is gradually adopting the different Books of the Belgian Civil Code, and the Belgian Code of Economic Law has been updated several times. These changes affect the way contract terms need to be drafted, not only between companies but also with consumers....

Client Alert | 3 min read | 10.17.25
California Enacts New Requirements and Restrictions for Health Care Transactions
Client Alert | 3 min read | 10.15.25
Developers Adapt Timelines and Strategies for Wind and Solar Projects Following Recent IRS Guidance and Expected IRS Enforcement Activity
Client Alert | 10 min read | 10.15.25
Understanding the EU’s International Procurement Instrument

View All Insights