Alexis Ward
Overview
Alexis Ward represents clients in a variety of matters at the intersection of government contracts and cybersecurity utilizing her experience in analytics and data architecture to counsel clients with a practical, real-world lens. As a member of Crowell & Moring’s Privacy and Cybersecurity and Government Contracts groups, Alexis has assisted clients in matters including False Claims Act investigations; developing corporate policies, procedures and governance; and in diverse matters involving cybersecurity and data privacy compliance, risk assessment and mitigation, and incident response.
Career & Education
- University of Southern California, Gould School of Law, 2022
- University of Miami, B.S.B.A., general honors, 2014
- California
Alexis's Insights
Webinar | 09.15.25
CMMC Clause Rule: What to Know
The Department of Defense (DoD) has released the highly anticipated second final rule for the Cybersecurity Maturity Model Certification Program (CMMC), ushering in its mandatory implementation that begins on November 10. CMMC is a unified assessment model released by the DoD in response to the growing threat of cyberattacks on and data theft from the Defense Industrial Base. This program requires every DoD contractor that handles sensitive government data to certify compliance with certain cybersecurity controls. CMMC brings greater scrutiny to contractors’ cybersecurity compliance and greater risks associated with compliance failures. To achieve certification, contractors must prove that their organizations can meet a myriad of security control obligations, a process that can be daunting without familiarity with the policies, procedures, and practices that will be required when the program is finalized.
Speaking Engagement | 09.15.25
Client Alert | 7 min read | 09.10.25
Insights
The Impact Of The Cybersecurity Maturity Model Certification On The Defense Industrial Base
|05.01.24
Contract Magazine
Privacy and Cybersecurity for Retailers in the Metaverse
|05.24.23
Retail in the Metaverse and Beyond
"Cybersecurity Maturity Model Certification (CMMC): Proposed Rule Released!", National Contract Management Association Webinar
|01.30.24
"What Tech Start-Ups Need to Know in the Era of CMMC: Federal Government Contracting Perspectives," San Francisco, CA
|01.25.24
CMMC Proposed Rule: What to Know
|01.09.24
- |
08.01.25
Crowell & Moring’s Government Contracts Legal Forum
Alexis's Insights
Webinar | 09.15.25
CMMC Clause Rule: What to Know
The Department of Defense (DoD) has released the highly anticipated second final rule for the Cybersecurity Maturity Model Certification Program (CMMC), ushering in its mandatory implementation that begins on November 10. CMMC is a unified assessment model released by the DoD in response to the growing threat of cyberattacks on and data theft from the Defense Industrial Base. This program requires every DoD contractor that handles sensitive government data to certify compliance with certain cybersecurity controls. CMMC brings greater scrutiny to contractors’ cybersecurity compliance and greater risks associated with compliance failures. To achieve certification, contractors must prove that their organizations can meet a myriad of security control obligations, a process that can be daunting without familiarity with the policies, procedures, and practices that will be required when the program is finalized.
Speaking Engagement | 09.15.25
Client Alert | 7 min read | 09.10.25
