Practices

Government Experience

Department of Defense—Branch Chief / Supervisory Contracting Officer, Washington Headquarters Services, Office of the Secretary of Defense, 2012 – 2017
Department of Homeland Security—Contracting Officer, U.S. Immigration and Customs Enforcement, 2011 – 2012; Senior Contract Specialist, DHS Headquarters, 2005 – 2011

Education

Virginia Commonwealth University, B.A., Magna cum Laude With University Honors
Georgetown University Law Center, J.D.

Admissions

District of Columbia
New York

Michael G. Gruden, CIPP/G

Counsel

mgruden@crowell.com

Washington, D.C.

+1.202.624.2545

Michael G. Gruden is a counsel in Crowell & Moring's Washington, D.C. office, where he is a member of the firm’s Government Contracts and Privacy and Cybersecurity groups. He possesses real-world experience in the areas of federal procurement and data security, having worked as a Contracting Officer at both the U.S. Department of Defense (DoD) and the U.S. Department of Homeland Security (DHS) in the Information Technology, Research & Development, and Security sectors for nearly 15 years. Michael is a Certified Information Privacy Professional with a U.S. government concentration (CIPP/G). He is also a Registered Practitioner under the Cybersecurity Maturity Model Certification (CMMC) framework. Michael serves as vice-chair for the ABA Science & Technology Section's Homeland Security Committee.

Michael’s legal practice covers a wide range of counseling and litigation engagements at the intersection of government contracts and cybersecurity. His government contracts endeavors include supply chain security counseling, contract disputes with federal entities, suspension and debarment proceedings, mandatory disclosures to the government, prime-subcontractor disputes, and False Claims Act investigations. His privacy and cybersecurity practice includes cybersecurity compliance reviews, risk assessments, data breaches, incident response, and regulatory investigations.

Government Contracts

Michael assists government contractors with federal contract compliance and administration matters throughout the contract lifecycle – from solicitation and award to audit, investigation, and termination. He advises clients on Federal Acquisition Regulations (FAR) provisions and clauses, as well as agency supplements such as the Defense Federal Acquisition Regulation Supplement (DFARS), Homeland Security Acquisition Regulations (HSAR), and others.

Cybersecurity

Michael has leveraged his procurement experience to advise numerous clients on DoD cybersecurity contract clauses. He has assisted clients in navigating the cybersecurity regulatory landscape by conducting compliance assessments, reviewing system security plans (SSPs) and plans of action and milestones (POAMs), and advising on Controlled Unclassified Information (CUI) marking guidance. Michael counsels clients on all aspects of cyber incident and data breach response, including working with forensic security consultants, conducting internal investigations, interacting with law enforcement, and complying with data breach notification laws. He also helps clients develop incident preparedness strategies and table-top exercises to assist companies in mitigating risks presented by data breach incidents.

Government Experience

Michael’s extensive federal procurement experience allows him to uniquely counsel his clients with a real-world perspective concerning contract evaluation and administration, as well as cybersecurity compliance.

U.S. Department of Defense

Branch Chief for Information Technology and Physical Security Acquisitions at Washington Headquarters Services (WHS), a 4th Estate DoD field activity responsible for the contracting needs of the Office of the Secretary of Defense (OSD) and the Pentagon Reservation. As an unlimited warrant Contracting Officer, Michael awarded, oversaw the award of or acted as the Source Selection Authority (SSA) of:
- $500 million solicitation for information technology services spanning the entire Pentagon Reservation, where Michael worked with the Chief Information Officer and other Senior Executive Service members to develop the acquisition strategy and request for proposal (RFP).
- Courtroom technology contracts at Guantanamo Bay, Cuba for 9/11 detainee military tribunals.
- 24/7 global information technology support for the Office of the Secretary of Defense and their advance staff.
- Travel agreements for the Secretary of Defense’s OCONUS and all CONUS travel.
- Modernization of IT infrastructure for DoD’s primary alternate site, continuity of operations (COOP) facility.
- Satellite tower construction and information technology development in the Asian Pacific to landmark drug, human, and weapon trafficking in concert with U.S. partnering nations.
- Wargaming, modeling, and simulation contracts in support of war planning directorate of OSD.
- Cooperative agreement for glass manufacturing facility in Afghanistan.
- Security installation and repair services for electronic security systems and infrastructure throughout Pentagon Reservation.
- Meteorological and laboratory services for Chemical, Biological, Radiological, Nuclear (CBRNE) defense.
Michael was detailed for six months to the Office of the General Counsel, where he assisted attorneys in the defense of protests filed before the Government Accountability Office (GAO) and the U.S. Court of Federal Claims (COFC).

U.S. Department of Homeland Security

Acquisition Professional at DHS Headquarters supporting Science & Technology (S&T) Directorate and Homeland Security Advanced Research Projects Agency (HSARPA), among others; Contracting Officer at Immigration and Customs Enforcement (ICE). Collectively, Michael worked to:
- Lead renovations for multiple DHS alternate site, continuity of operations facilities managing a suite of renovation construction contracts encompassing data centers, supervisory control and data acquisition (SCADA) systems, power grids, and water treatment facilities.
- Administer Broad Agency Announcement (BAA) solicitation encompassing all program missions within S&T. Engaged with industry regarding the BAA, liaised between industry, members of Congress, the Executive Director of S&T, and program offices.
- Award cybersecurity and CBRNE contracts for S&T and HSARPA.
- Partner with the Office of Security to award essential IT software and hardware contracts.

During law school, Michael was an editor of the Journal of National Security Law & Policy.

Representative Matters

Government Contracts

Conducted internal investigations of government contractors, addressing a variety of issues relating to government contracts and regulations.
Prepared clients for supply chain management audits and assessments including Contractor Purchasing System Reviews (CPSR).
Assisted clients in suspension and debarment matters and drafted comprehensive responses to notices of proposed debarment.
Represented government contractors in bid protests before the Government Accountability Office (GAO).
Advised government contractors regarding organizational conflicts of interest and post-government employment restrictions.

Cybersecurity

Engaged in longstanding partnerships with multiple defense contractors to devise compliance strategies for DFARS 252.204-7012, including routine gap assessments and subsequent remediation plans.
Assisted major retailer with data breach notification reporting obligations and coordinated consumer and state notifications, as appropriate.
Helped clients assess and comply with cyber incident reporting obligations under DFARS 252.204-7012.
Conducted compliance assessments for clients and interpreted NIST SP 800-171 and NIST SP 800-53 regulatory requirements.
Advised clients on cloud service provider requirements under DFARS 252.204-7012 and DFARS 252.239-7010.
Counseled contractors regarding information security programs concentrating on Covered Defense Information (CDI), Controlled Unclassified Information (CUI), and Sensitive Security Information (SSI).

Speeches & Presentations

“FY2023 NDAA: Need-to-Know Provisions for Government Contractors” National Contract Management Association (January 18, 2023). Speakers: Michael Gruden, Olivia Lynch, Stephanie Crawford, Christopher Garcia, Lyndsay Gorton, Rina Gashaw, Alexandra Barbee-Garrett, and Rachel Schumacher.
"What Will the New Year Bring for Government Contractors?" Crowell & Moring Webinar, 2023. (January 12, 2023). Presenters: Crowell & Moring Government Contracts Group.
"Cyber Expectations," The Coalition for Government Procurement's 2022 Fall Conference: Expectations for Gov Fiscal Year 2023, Falls Church, VA. (November 16, 2022). Speaker: Michael G. Gruden.
"Legal Spotlight," Washington Technology CMMC 2.0 Ecosystem Summit, McLean, VA. (November 9, 2022). Speaker: Michael G. Gruden.
CMMC 2.0 and the Rise of False Claims Act Cyber Liability – Coalition for Government Procurement (October 27, 2022). Speakers: Michael Gruden, Nkechi Kanu, and Tully McLaughlin.
“Information Risk Management & Security,” GC 101: Back to Basics, Washington, D.C. (September 21, 2022). Presenters: Evan Wolff, Nkechi Kanu, and Michael Gruden.
"Cybersecurity & Privacy," Back Together Again for OOPS 2022, Washington, D.C. (May 16, 2022). Speakers: Evan D. Wolff, Alexander Urbelis, Nkechi Kanu, and Michael G. Gruden.
"A New Flightpath for Cybersecurity: How to Strengthen Your Infrastructure and Understand Your Cyber Readiness," Association of Corporate Counsel Webinar (February 1, 2022). Speakers: Evan D. Wolff; Kate M. Growley; Michael G. Gruden
"FY2022 NDAA" National Contract Management Association (January 28, 2022). Speakers: Jonathan Baker, Adelicia Cliffe, Stephanie Crawford, Christopher Garcia, Rina Gashaw, Michael Gruden, John McCarthy, Zachary Schroeder, Evan Wolff, and Yuan Zhou.
“Dissecting CMMC 2.0” National Contract Management Association (January 27, 2022). Speakers: Nkechi Kanu, Evan D. Wolff, Michael G. Gruden, Christopher R. Hebdon.
"FY22 NDAA Need to Know Provisions," National Contract Management Association Space Coast Chapter (January 12, 2022). Speakers: John McCarthy, Adelicia R. Cliffe, Jonathan Baker, Olivia Lynch, Stephanie Crawford, Christopher Garcia, Michael G. Gruden, and Rina Gashaw.
"Privacy & Cybersecurity Updates," North Alabama Federal Bar Association Acquisition Law Symposium (December 15, 2021). Speaker: Michael G. Gruden.
"Information Risk Management & Security," Crowell & Moring's Government Contracts 101 Seminar 2021 (October 22, 2021). Speakers: Kate M. Growley, Evan D. Wolff, Michael G. Gruden, and Christopher R. Hebdon.
"Cybersecurity & Privacy," OOPS 2021, Crowell & Moring's 37th Annual Ounce of Prevention Seminar (May 10, 2021). Presenters: Kate M. Growley, Evan D. Wolff, and Michael G. Gruden.
"New Policies and Priorities – Implications for Government Contractors," Crowell & Moring Webinar (April 15, 2021). Presenters: Michael K. Atkinson, Trina Fairley Barlow, Robert A. Burton, Adelicia R. Cliffe, and Michael G. Gruden.
"SolarWinds SUNBURST & Supply Chain Security," American Bar Association Public Contract Law Section (April 1, 2021). Speakers: Evan D. Wolff and Michael G. Gruden.
"Cybersecurity & Privacy Updates," North Alabama Federal Bar Association Acquisition Law Symposium (December 4, 2020). Speaker: Michael G. Gruden.
"Cyber-Insecurity: Understanding DoD’s New Cybersecurity Clauses," Crowell & Moring Webinar (October 14, 2020). Presenters: Evan D. Wolff, Kate M. Growley, and Michael G. Gruden.
"Information Risk Management & Security," Government Contracts "101" - Back to Basics Webinar (September 25, 2020). Presenters: Kate M. Growley, Evan D. Wolff, and Michael G. Gruden.
"Is the Platform You’re Using a Potential Threat to Protecting Your Trade Secrets?" Crowell & Moring Webinar (May 13, 2020). Presenters: Gabriel M. Ramsey, Astor Heaven, Helen Osun, and Michael G. Gruden.
"Navigating an Evolving Supply Chain Landscape in the Face of the Coronavirus Pandemic," Crowell & Moring Webinar (March 25, 2020). Presenters: Adelicia R. Cliffe, Evan D. Wolff, Paul Freeman, Michelle D. Coleman, Stephanie L. Crawford, and Michael G. Gruden.
"Cutting Edge Cybersecurity Developments," North Alabama Federal Bar Association Acquisition and Employment Symposia (November 12, 2019). Presenter: Michael G. Gruden.
"DoD Cyber Regulations and the Rise of False Claims Act Cyber Liability," DHG Government Contracting Webinar (October 23, 2019). Presenter: Michael G. Gruden.
"Confronting the Challenges of Supply Chain Security," Crowell & Moring Webinar (September 25, 2019). Presenters: Adelicia R. Cliffe, Paul Freeman, Kate M. Growley, and Michael G. Gruden.
"Accounting Cost & Pricing Compliance and Pitfalls," Government Contracts Breakfast Series, Herndon, VA (September 18, 2019). Presenters: Nicole Owren-Wiest, Elizabeth Buehler, Charles Baek, Michael G. Gruden, and Catherine O. Shames.
"3D Printing in Government Contracts: What Contractors Need to Know Before Adopting This Innovation," Crowell & Moring Webinar (November 8, 2018). Speakers: Gail D. Zirkelbach, Mana Elihu Lombardo, and Michael G. Gruden.
"Under Scrutiny: Contractors and Cybersecurity," OOPS 2018, Crowell & Moring's 34th Annual Ounce of Prevention Seminar, Washington, D.C. (May 17, 2018). Presenters: Paul M. Rosen, Evan D. Wolff, David Z. Bodenheimer, and Michael G. Gruden.

Publications

"Cybersecurity Provisions Proliferate In The National Defense Authorization Act," Government Contracting Law Report (March 15, 2022). Authors: Kate M. Growley, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, and Christopher R. Hebdon.
"A New Flightpath For Cybersecurity," ACC Docket (September 8, 2021). Authors: Evan D Wolff, Kate M. Growley, Maida Oringher Lerner, and Michael G. Gruden.
"Navigating The SolarWinds Supply Chain Attack," The Procurement Lawyer (March 25, 2021). Authors: Evan D. Wolff, Kate M. Growley, Maida Oringher Lerner, Matthew B. Welling, Michael G. Gruden, and Jacob Canter.
"Companies Protecting Trade Secrets Should Consider Role of NIST’s Enhanced Security Requirements," Crowell & Moring’s Trade Secrets Trends (July 16, 2020). Authors: Kate M. Growley, CIPP/G, CIPP/US, Julia Milewski and Michael G. Gruden, CIPP/G.
"Defending Cybersecurity False Claims Act Allegations," Bloomberg Law (September 18, 2019). Authors: Jason M. Crawford, David B. Robbins, Kate M. Growley, and Michael G. Gruden.
"DoD Increases DCMA Cybersecurity Responsibilities: DCMA to Implement and Assess Company-Wide Cyber Compliance," Crowell & Moring's Government Contracts Legal Forum (February 21, 2019). Authors: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, Payal Nanavati and Judy Choi.
"SEC Encourages Internal Accounting Controls to Guard Against Cyber Fraud," Crowell & Moring's Data Law Insights (November 8, 2018). Authors: Paul M. Rosen, Daniel L. Zelenko, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G, and Paul C. Mathis.
"NIST Offers Insight Into Updated Risk Management Framework," Crowell & Moring's Data Law Insights (October 30, 2018). Authors: Peter B. Miller, Kate M. Growley and Michael G. Gruden.
"Navy Boils The Ocean on Cyber," Crowell & Moring's Data Law Insights (October 24, 2018). Authors: Evan D. Wolff, Kate M. Growley and Michael G. Gruden.
"New Internet of Things (IoT) NIST Draft Publication Provides Welcomed Guidance," Crowell & Moring's Data Law Insights (October 17, 2018). Authors: Cheryl A. Falvey, Kate M. Growley and Michael G. Gruden.
"Finally, Cyber Help For Small Businesses Is On Its Way," Law360 (October 1, 2018). Authors: Evan D. Wolff, Paul M. Rosen, Kate M. Growley, and Michael Gruden.
"Colorado’s New Data Privacy Bill Increases Notification and Safeguarding Requirements," Crowell & Moring's Data Law Insights (July 17, 2018). Authors: Evan D. Wolff, Maida Oringher Lerner, Matthew B. Welling and Michael G. Gruden.
"How Quickly Should Contractors Report Data Breaches? GAO Denies Protest Finding 12 Hours Is Not Fast Enough," Crowell & Moring's Government Contracts Legal Forum (May 7, 2018). Authors: Christian N. Curran and Michael G. Gruden.
"New Draft NIST Guidance on Systems Security Engineering," Crowell & Moring's Government Contracts Legal Forum (April 24, 2018). Authors: Evan D. Wolff, Peter B. Miller, Maida Oringher Lerner, Kate M. Growley, Judy Choi, Michael G. Gruden and Payal Nanavati.
"Is Government Data at Risk? Study Finds Industry Cybersecurity Lagging Government," Crowell & Moring's Data Law Insights (February 26, 2018). Authors: Paul M. Rosen, Kate M. Growley and Michael G. Gruden.
"National Archives Issues New, But Limited, CUI Contract Guidance," Crowell & Moring's Data Law Insights (February 8, 2018). Authors: Kate M. Growley and Michael G. Gruden.
"U.K. Announces Fines Up To $24M For Cyber Noncompliance," Crowell & Moring's Data Law Insights (January 31, 2018). Authors: Maida Oringher Lerner, Maarten Stassen and Michael G. Gruden.
"New GDPR Guidance from EU Commission," Crowell & Moring's Data Law Insights (January 25, 2018). Authors: Maarten Stassen and Michael G. Gruden.
"FERC Proposes to Require Expanded Cyber Security Incident Reporting," Crowell & Moring's Data Law Insights (January 17, 2018). Authors: Evan D. Wolff, Maida Oringher Lerner, Deborah A. Carpentier, Matthew B. Welling and Michael G. Gruden.

Client Alerts & Newsletters

"Cyber and Physical Attacks on the Electric Grid Should Prompt New Year’s Resolutions for the Energy Industry," Environment & Natural Resources Law Alert (January 13, 2023). Contacts: Tyler A. O'Connor, Evan D. Wolff, Matthew B. Welling, Maida Oringher Lerner, Deborah A. Carpentier, Michael G. Gruden, CIPP/G
"FY 2023 National Defense Authorization Act: Key Provisions Government Contractors Should Know," Government Contracts Bullet Points (December 28, 2022). Contacts: Alexandra Barbee-Garrett, Adelicia R. Cliffe, Stephanie L. Crawford, Maria Alejandra (Jana) del-Cerro, Christopher D. Garcia, Rina M. Gashaw, Lyndsay A. Gorton, Michael G. Gruden, CIPP/G, Jacob Harrison, Olivia Lynch, John E. McCarthy Jr., Per David Midboe, Rachel Schumacher, Zachary Schroeder, Robert J. Sneckenberg, Anuj Vohra, Alexis Ward, Darianne Young
"Going Hard on Software: OMB Unveils Mandatory Software Supply Chain Security Compliance Requirements," Privacy Law Alert (September 15, 2022). Contacts: Michael G. Gruden, CIPP/G, Evan D. Wolff, Alexander Urbelis, Maida Oringher Lerner, Jacob Harrison
"No Summer Break for Cyber: Newly Unveiled CMMC Assessment Process Provides Industry with Upcoming Assessment Insights," Government Contracts Bullet Points (August 1, 2022). Contacts: Michael G. Gruden, CIPP/G, Evan D. Wolff, Alexander Urbelis, Maida Oringher Lerner, Jacob Harrison
"President Biden Signs Bill Expanding Cybersecurity Reporting Obligations," Privacy Law Alert (March 24, 2022). Contacts: Sarah Rippy, Matthew B. Welling, Evan D. Wolff, Maida Oringher Lerner, Alexander Urbelis, Michael G. Gruden, CIPP/G
"NIST Publishes Assessment Procedures for Enhanced Security Controls Used to Protect CUI," Government Contracts Bullet Points (March 18, 2022). Contacts: Evan D. Wolff, Maida Oringher Lerner, Alexander Urbelis, Nkechi Kanu, Michael G. Gruden, CIPP/G, Garylene (Gage) Javier, CIPP/US
"The Department of Defense Updates Security Requirements for Cloud Services," Government Contracts Bullet Points (February 1, 2022). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Garylene (Gage) Javier, CIPP/US, Alexander Urbelis
"Byte-Sized Q&A: What is CISA and Why is it Important to Government Contractors?," Podcast: Byte-Sized Q&A (January 19, 2022). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"Cybersecurity Provisions Proliferate in the National Defense Authorization Act," Government Contracts Bullet Points (January 10, 2022). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"CMMC 2.0 Scoping Guidance Limits the Scope of Cybersecurity Assessments," Government Contracts Bullet Points (December 23, 2021). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"CMMC 2.0: DoD Unveils Sweeping Changes Streamlining CMMC Requirements," Government Contracts Bullet Points (November 5, 2021). Contacts: Michael G. Gruden, CIPP/G, Maida Oringher Lerner, Evan D. Wolff
"CISA Releases Catalog of Cybersecurity Vulnerabilities Along With a Plan for Remediation," Government Contracts Bullet Points (November 4, 2021). Contacts: Michael G. Gruden, CIPP/G, Maida Oringher Lerner, Evan D. Wolff
"Just in Time for Halloween: DOJ Launches Cyber Enforcement Initiative Using False Claims Act," Government Contracts Bullet Points (October 8, 2021). Contacts: Michael G. Gruden, CIPP/G, Nkechi Kanu, Brian Tully McLaughlin, Rebecca Monck Ricigliano, Stephen M. Byers, Evan D. Wolff
"Biden Administration Orders Sweeping Directives to Federal Agencies and Contractors to Improve U.S. Cybersecurity," Privacy Law Alert (May 13, 2021). Contacts: Evan D. Wolff, Gabriel M. Ramsey, Michael G. Gruden, CIPP/G, Maida Oringher Lerner
"Byte-Sized Q&A: What is Covered Defense Information?," Podcast: Byte-Sized Q&A (March 22, 2021). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"Byte-Sized Q&A: What is Controlled Unclassified Information?," Podcast: Byte-Sized Q&A (March 8, 2021). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"Byte-Sized Q&A: What is Federal Contract Information?," Podcast: Byte-Sized Q&A (February 22, 2021). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"NIST Finalizes Enhanced Security Requirements for Combating Advanced Cyber Threats," Government Contracts Bullet Points (February 9, 2021). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD and GSA Take Aim at Supply Chain Risks," Government Contracts Bullet Points (January 15, 2021). Contacts: Adelicia R. Cliffe, Evan D. Wolff, Michael G. Gruden, CIPP/G
"National Defense Authorization Act for Fiscal Year 2021: Need-to-Know Provisions for Government Contractors," Government Contracts Bullet Points (January 12, 2021). Contacts: Charles Baek, Jonathan M. Baker, Adelicia R. Cliffe, Stephanie L. Crawford, Peter Eyre, Christopher D. Garcia, Michael G. Gruden, CIPP/G, J. Chris Haile, Olivia Lynch, Nicole Owren-Wiest, Michael E. Samuels
"DoD’s Stocking Stuffer: Defense Department Announces Proposed CMMC Pilot Programs," Government Contracts Bullet Points (December 21, 2020). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"The DoD's Own Cyber Monday: Defense Department Releases CMMC Assessment Guides," Government Contracts Bullet Points (December 9, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G, Nkechi Kanu
"Buy 1 Get 2 Free Special on Cyber Regulations: DoD Interim Rule Unveils 3 New Clauses Geared at Cybersecurity Assessments," Privacy Law Alert (September 29, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"NIST Enhances Final Draft of NIST SP 800-172, Enhanced Security Requirements," Government Contracts Bullet Points (July 8, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Mobile Applications For COVID Tracking & Tracing – Balancing the Need for Personal Information and Privacy Rights in the Time of Coronavirus," Privacy Law Alert (April 15, 2020). Contacts: Kristin J. Madigan, CIPP/US, Jeffrey L. Poston, Matthew B. Welling, Evan D. Wolff, Brandon C. Ge, Michael G. Gruden, CIPP/G
"Welcomed Guidance: DoD Issues Controlled Unclassified Information (CUI) Program Instructions," Government Contracts Bullet Points (March 31, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Just in Time for Spring: Revision 2 to NIST SP 800-171 Comes into Full Bloom," Government Contracts Bullet Points (March 12, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Draft NIST Guidance Highlights Supply Chain Fundamentals as Key Practices in Cyber Supply Chain Risk Management," Government Contracts Bullet Points (February 21, 2020). Contacts: Stephanie L. Crawford, Michael G. Gruden, CIPP/G
"No More "Wait & See" for CMMC: DoD Releases Final Cybersecurity Maturity Model Certification," Government Contracts Bullet Points (February 3, 2020). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Previews Final Cybersecurity Maturity Model Certification with Revision 0.7," Government Contracts Bullet Points (December 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"The Gift that Keeps on Giving: FAR Council Attempts to Reduce Burden of Representation Requirement for Covered Telecommunication Offerings," Government Contracts Bullet Points (December 16, 2019). Contacts: Adelicia R. Cliffe, Michael G. Gruden, CIPP/G, Stephanie L. Crawford, Laura J. Mitchell Baker
"Supply Chain Perspectives — Connecting the Dots on Supply Chain Security and Risk Management," Government Contracts Bullet Points (December 2, 2019). Contacts: Adelicia R. Cliffe, Peter Eyre, Paul Freeman, Nicole Owren-Wiest, Michael G. Gruden, CIPP/G
"Immaturity of the Cybersecurity Maturity Model: Revisions Omit Higher-Level Updates," Government Contracts Bullet Points (November 13, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Zero Hour: Contractors Face Increased FCA Exposure for Cybersecurity Noncompliance," False Claims Bullet Points (September 25, 2019). Contacts: Evan D. Wolff, Jason M. Crawford, Michael G. Gruden, CIPP/G
"Cybersecurity Maturity Model Matures: DoD Adds New Requirements to Draft Cybersecurity Certification," Government Contracts Bullet Points (September 10, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Supply Chain Perspectives — Connecting the Dots on Supply Chain Security and Risk Management," Government Contracts Bullet Points (August 22, 2019). Contacts: Adelicia R. Cliffe, Peter Eyre, Paul Freeman, Michael G. Gruden, CIPP/G
"Under the Wire: FAR Council Announces Interim Rule to Implement NDAA Procurement Ban on Huawei and Other Chinese Telecommunications Equipment," Government Contracts Bullet Points (August 13, 2019). Contacts: Adelicia R. Cliffe, Paul Freeman, Alan W. H. Gourley, Michael G. Gruden, CIPP/G
"Uncontrolled Information: DoD Audit Finds Contractor Lapses in Protecting Controlled Unclassified Information," Government Contracts Bullet Points (August 2, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DCMA Revises Cyber Supply Chain Review: Updated Guidebook Modifies Audit Standards," Government Contracts Bullet Points (July 16, 2019). Contacts: Evan D. Wolff, Nicole Owren-Wiest, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"These Are a Few of Our Favorite IoT: NIST Finalizes Internet of Things Cyber Guidance," Government Contracts Bullet Points (July 2, 2019). Contacts: Cheryl A. Falvey, Evan D. Wolff, Michael G. Gruden, CIPP/G
"Double Whammy: NIST Unveils Draft Enhanced Security Requirements and Revisions to NIST SP 800-171," Government Contracts Bullet Points (June 21, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Previews New Third-Party Cyber Certification Requirements," Government Contracts Bullet Points (June 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"It All Adds Up: What’s New with DCAA (May 2019)," Podcast: It All Adds Up (May 7, 2019). Contacts: Nicole Owren-Wiest, Charles Baek, Michael G. Gruden, CIPP/G, Catherine O. Shames
"Navy Identifies Defense Industrial Base Cyber Shortcomings in New Report," Government Contracts Bullet Points (March 22, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DCMA’s Cybersecurity Oversight Takes Shape: Revised CPSR Guidebook Outlines DFARS Safeguarding Clause Audit Standards," Government Contracts Bullet Points (March 6, 2019). Contacts: Nicole Owren-Wiest, Evan D. Wolff, Maida Oringher Lerner, Christopher D. Garcia, Michael G. Gruden, CIPP/G
"Upping the Cyber Oversight Ante: DoD Deploys DCMA to Audit Contractor Supply Chain Compliance," Government Contracts Bullet Points (January 28, 2019). Contacts: Nicole Owren-Wiest, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD's Own Cyber Monday Deal: Releasing DFARS Cyber Enhancement Guidance," Government Contracts Bullet Points (November 27, 2018). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Navy Makes Waves By Increasing Cybersecurity Requirements for Select Defense Industrial Base Contractors," Government Contracts Bullet Points (November 1, 2018). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"New National Cyber Strategy Outlines President's Cyber Agenda," Privacy Law Alert (October 5, 2018). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"Finally Heard – Cyber Help for Small Businesses is on Its Way," Government Contracts Bullet Points (August 22, 2018). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"FY 2019 NDAA – Cyber Focus," Government Contracts Bullet Points (August 20, 2018). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"A New Privacy and Data Control Framework in California," Privacy Law Alert (June 29, 2018). Contacts: Robert Holleyman, Jeffrey L. Poston, Maarten Stassen, Evan D. Wolff, Michael G. Gruden, CIPP/G
"NIST Offers a Two-for-One Special on Cybersecurity Updates," Government Contracts Bullet Points (June 20, 2018). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Forget The Showers. April Brings Flurry of New Cyber Guidance.," Government Contracts Bullet Points (May 1, 2018). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Final Draft of NIST SP 800-171A Gives Contractors Something to Sample," Government Contracts Bullet Points (March 1, 2018). Contacts: Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"National Archives Issues Non-FAR-Based Guidance for Controlled Unclassified Information," Government Contracts Bullet Points (February 13, 2018). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"Uncooperative: Court Holds That Cooperative Agreement is Not a Contract," Government Contracts Bullet Points (December 14, 2017). Contacts: Skye Mathieson, Stephen J. McBrady, Michael G. Gruden, CIPP/G, Monica DiFonzo Sterling
"No Post-Thanksgiving Break for Cyber – DoD and NIST Publish New Guidance," Government Contracts Bullet Points (December 1, 2017). Contacts: Evan D. Wolff, Michael G. Gruden, CIPP/G
"To Disclose or Not To Disclose: Federal Government & Cybersecurity Vulnerabilities," Government Contracts Bullet Points (November 16, 2017). Contacts: Evan D. Wolff, Matthew B. Welling, Michael G. Gruden, CIPP/G

Press Coverage

How CMMC Raises Legal Exposures For Contractors And Their Suppliers
November 16, 2022 — Washington Technology
Assessment Draft For DOD Cyber Program Lacks Key Details
August 5, 2022 — Law360

Firm News & Announcements

January 9, 2023	Crowell & Moring Elects 16 New Partners, Promotes Five to Senior Counsel, and 25 to Counsel
March 2, 2021	Crowell & Moring Achieves CMMC Registered Provider Organization Status
February 22, 2019	Law360 Names Crowell & Moring's Government Contracts Group a "Practice Group of the Year" for the Ninth Consecutive Year

Advanced Search | Government Experience

C&M International | Crowell Health Solutions

Attorney Advertising—Prior results do not guarantee a similar outcome.