Navy Identifies Defense Industrial Base Cyber Shortcomings in New Report
Client Alert | 1 min read | 03.22.19
The Navy has released its Cybersecurity Readiness Review, drafted at the Secretary’s request, in response to recent losses of classified and unclassified data. The Review calls attention to the contracting community’s key role in safeguarding critical government data – and the perceived shortcomings of the current acquisition system in achieving that end. Despite mandatory contract requirements such as DFARS 252.204-7012, the Review notes that the Defense Industrial Base (DIB) has experienced “a flood of breaches” and “continues to hemorrhage critical data.” In response, the Review recommends:
- Holding individuals personally accountable for achieving mandated standards.
- Ensuring the supply chain is “delivered uncompromised” for mission readiness.
- Creating cybersecurity “go/no-go” criteria for capabilities.
- Expanding information sharing with DIB partners to better identify risks and priorities.
- Working with industry trade groups to assist subcontractors in improving cyber defenses.
Contacts
Partner and Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 4 min read | 04.14.26
FedRAMP Solicits Public Comment on Overhaul to Incident Communications Procedures
The Federal Risk and Authorization Management Program (FedRAMP) continues to advance its modernization agenda. On April 8, 2026, FedRAMP released RFC-0031, Updated Incident Communications Procedures for public comment. This RFC proposes replacing the current FedRAMP Incident Communications Procedures (ICP) with what FedRAMP calls “a clear set of reporting requirements … established using a modern rules-based format.”
Client Alert | 4 min read | 04.14.26
Client Alert | 5 min read | 04.13.26
EU Pharma Package: Global (Orphan) Marketing Authorization Compromise Proposal
Client Alert | 4 min read | 04.13.26
