Maida Oringher Lerner

Senior Counsel

Washington, D.C.

mlerner@crowell.com
Phone: +1 202.624.2596
1001 Pennsylvania Avenue NW
Washington, DC 20004-2595

Maida Lerner is senior counsel in Crowell & Moring's Washington, D.C. office and a part of the firm's Privacy & Cybersecurity, Government Contracts, and Environment & Natural Resources groups. Maida counsels a broad group of clients in a variety of sectors on cyber and physical security compliance and risk management, homeland security, and administrative matters, including trade associations and companies in the pipeline, transportation, government contracts, education, health care, and manufacturing sectors.

Maida's homeland security practice has a particular emphasis on critical infrastructure, chemical security, the SAFETY Act, and corporate compliance. Maida regularly advises companies on privileged security risk assessments and compliance reviews, data breaches, and internal investigations coordinated with forensic experts after intrusions.

As part of an enterprise-wide compliance approach to evolving and complex security risks and standards, Maida has helped clients facilitate cyber and physical security incident simulations, develop incident response and insider threat plans and programs, and worked closely with technical consultants on behalf of companies to conduct privileged vulnerability assessments and mitigation plans.

Representative Experience

Advised government contractors on internal cyber and physical security risk assessments and compliance reviews.
Advised transportation and energy companies develop cyber and physical security policies, including incident response plans, insider threat programs, and governance frameworks.
Facilitated simulated security incident exercises and developed training programs for owners and operators of U.S. critical infrastructure to test response plans.
Represented a transportation sector trade association in securing federal funding for a state-of-the-art cyber threat information-sharing network.
Advised clients in a multitude of sectors, including energy, transportation, health and education, on chemical security regulation compliance, including the Chemical Facility Anti-Terrorism Standards (CFATS).
Advised clients and represented a company on successful resolution of applications under the Support Anti-Terrorism By Fostering Effective Technologies (SAFETY) Act.
Advised manufacturing companies regarding Chemical Safety and Hazardous Investigation Board (CSB) assessment of an industrial accident.
Advised corporations on compliance issues arising under federal and state Clean Air Acts, including the National Emission Standards for Hazardous Pollutants (NESHAPS) and asbestos abatement issues.
Participated in major rulemakings arising under the federal Clean Air Act.
Advised companies on internal environmental audits.
Represented members of the utility industry in successful resolution of appellate litigation.
Represented corporations in matters involving the Freedom of Information Act (FOIA).
Advised clients on compliance issues arising under the federal Endangered Species Act.

Before joining Crowell & Moring, Maida was counsel with Hunton & Williams in Washington, D.C. where she advised clients on regulatory compliance and in numerous administrative and judicial proceedings before federal and state courts and administrative agencies. Prior to entering private practice, Maida served in the Office of General Counsel for a major electric utility company.

Maida is also active in pro bono matters with a focus on child custody issues.

Affiliations

Admitted to practice: District of Columbia, New York, the U.S. Supreme Court, and numerous federal appellate and district courts nationwide.

Highlights, News & Knowledge

View latest items by date

Speeches & Presentations

"Cybersecurity Table Top for a Congressional Cyber Security Lab Program," Wilson Center, Washington, D.C. (June 10, 2016). Moderator: Evan D. Wolff. Facilitators: Peter B. Miller, Harvey Rishikof, Maida Oringher Lerner, Elliot Golding, and Kate Growley.
"Cybersecurity Risk Management: The View from Washington and Beyond," OOPS 2015, Crowell & Moring's 31st Annual Ounce of Prevention Seminar, Washington, D.C. (May 5-6, 2015). Moderator: Peter B. Miller; Panelists: Evan D. Wolff, Maida Oringher Lerner, and Kate M. Growley.

Publications

"Energy Cybersecurity Act of 2019," Crowell & Moring's Data Law Insights (February 10, 2020). Authors: Evan D. Wolff, Jeffrey L. Poston, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Tyler A. O'Connor and Amber Mulcare, CIPP-US.
"Safety Act Liability Protections Will Be Tested," Crowell & Moring's Data Law Insights (July 25, 2018). Authors: Evan D. Wolff, Maida Oringher Lerner and Matthew B. Welling.
"Colorado’s New Data Privacy Bill Increases Notification and Safeguarding Requirements," Crowell & Moring's Data Law Insights (July 17, 2018). Authors: Evan D. Wolff, Maida Oringher Lerner, Matthew B. Welling and Michael G. Gruden.
"New Draft NIST Guidance on Systems Security Engineering," Crowell & Moring's Government Contracts Legal Forum (April 24, 2018). Authors: Evan D. Wolff, Peter B. Miller, Maida Oringher Lerner, Kate M. Growley, Judy Choi, Michael G. Gruden and Payal Nanavati.
"U.K. Announces Fines Up To $24M For Cyber Noncompliance," Crowell & Moring's Data Law Insights (January 31, 2018). Authors: Maida Oringher Lerner, Maarten Stassen and Michael G. Gruden.
"FERC Proposes to Require Expanded Cyber Security Incident Reporting," Crowell & Moring's Data Law Insights (January 17, 2018). Authors: Evan D. Wolff, Maida Oringher Lerner, Deborah A. Carpentier, Matthew B. Welling and Michael G. Gruden.
"Court Allows Data Breach Claims Against Kimpton," Crowell & Moring's Data Law Insights (April 20, 2017). Authors: Maida Oringher Lerner, Kate M. Growley and Charles D. Austin.
"New OCR Settlement Targets Safety Net Provider on Security Rule Deficiencies," Crowell & Moring's Data Law Insights (April 14, 2017). Authors: Daniel E. Vinish, Maida Oringher Lerner, Stephanie D. Willis and Kate M. Growley.
"Home Depot Settles Major Data Breach Suit with Financial Institutions for $25 Million," Crowell & Moring's Data Law Insights (March 10, 2017). Authors: Maida Oringher Lerner and Justin Kingsolver.
"Cleared Contractors Under the Gun as Insider Threat Program Deadline Approaches," Bloomberg BNA Insights (November 11, 2016). Authors: Adelicia R. Cliffe, Kate M. Growley, Maida Oringher Lerner, Peter B. Miller, and Evan D. Wolff.
"Privacy & Cybersecurity Weekly News Update – Week of July 31," Crowell & Moring's Data Law Insights (August 11, 2016). Authors: Matthew B. Welling, Maida Oringher Lerner, and Lisa Weinert .
"Privacy & Cybersecurity Weekly News Update - Week of June 20, 2016," Crowell & Moring's Data Law Insights (June 24, 2016). Authors: Charles Austin, Maida Oringher Lerner, and Lisa Weinert.
"Privacy & Cybersecurity Weekly News Update- Week of June 13," Crowell & Moring's Data Law Insights (June 17, 2016). Authors: Charles Austin, Maida Oringher Lerner, and Lisa Weinert.
"Privacy & Cybersecurity Weekly News Update - Week of June 6," Crowell & Moring's Data Law Insights (June 13, 2016). Authors: Charles Austin, Maida Oringher Lerner, and Lisa Weinert.
"Cybersecurity Programs – A Guide," ACC New York City Chapter Summer Newsletter (June 2016). Authors: Linda Lerner, Maida Oringher Lerner, Harvey Rishikof, and Jenny E. Cieplak.
"Privacy & Cybersecurity Weekly News Update- Week of May 30, 2016," Crowell & Moring's Data Law Insights (June 7, 2016). Authors: Charles Austin, Maida Oringher Lerner, and Lisa Weinert.
"Privacy & Cybersecurity Weekly News Update," Crowell & Moring's Data Law Insights (April 4, 2016). Authors: Danielle Rowan and Maida Oringher Lerner.
"Privacy & Cybersecurity Weekly News Update," Crowell & Moring's Data Law Insights (March 28, 2016). Authors: Danielle Rowan and Maida Oringher Lerner.
"Privacy & Cybersecurity Weekly News Update," Crowell & Moring's Data Law Insights (March 14, 2016). Authors: Danielle Rowan and Maida Oringher Lerner.
"The Global Uptake of the NIST Cybersecurity Framework," Cybersecurity Law & Practice, Volume: 2 Issue: 2 (February 2016). Co-Authors: Evan Wolff, Maida Lerner, Peter Miller, Matthew Welling, and Christopher Hoff.
"Managing Cybersecurity: What the Mining Industry Should Know and Do," The Conveyor (Winter 2016). Co-Authors: Evan Wolff, Maida Oringher Lerner, Preetha Chakrabarti, and Willa Perlmutter.
"Interim Rule Could Expand Already Onerous DFARS Cyber Requirements," Crowell & Moring's Data Law Insights (August 27, 2015). Authors: Kate M. Growley, Evan D. Wolff, and Maida Oringher Lerner.
"Interim Rule Could Expand Already Onerous DFARS Cyber Requirements," Crowell & Moring's Government Contracts Legal Forum (August 27, 2015). Authors: Kate M. Growley, Maida Oringher Lerner and Evan D. Wolff.
"What The OMB Cybersecurity Proposal Does And Doesn't Do," Law360 (August 19, 2015). Authors: Kate M. Growley, Peter B. Miller, Maida Oringher Lerner, and Evan D. Wolff.
"Cyberattacks Could Strike Gold In Mining Industry Data," Law360 (June 19, 2015). Authors: Evan D. Wolff, Maida Oringher Lerner, and Preetha Chakrabarti.
"The Mining Law Monitor," Crowell & Moring Publication, Vol. 28, Issue 1 (Summer 2015). Editor: Daniel W. Wolff; Authors: Thomas P. Gies, Christopher Calsyn, Edward M. Green, Sherrie A. Armstrong, Evan D. Wolff, Maida Oringher Lerner, and Preetha Chakrabarti.
"Cyber Executive Order Continues the Push for Public-Private Partnerships," Crowell & Moring's Data Law Insights (February 23, 2015). Authors: Evan D. Wolff, Peter B. Miller, Kate M. Growley, and Maida Oringher Lerner.

Client Alerts & Newsletters

"No More "Wait & See" for CMMC: DoD Releases Final Cybersecurity Maturity Model Certification," Government Contracts Bullet Points (February 3, 2020). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Previews Final Cybersecurity Maturity Model Certification with Revision 0.7," Government Contracts Bullet Points (December 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Immaturity of the Cybersecurity Maturity Model: Revisions Omit Higher-Level Updates," Government Contracts Bullet Points (November 13, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"NERC Issues “Lesson Learned” From a Cyberattack on an Electricity Control Center," Energy Law Alert (September 13, 2019). Contacts: Deborah A. Carpentier, Richard Lehfeldt, Evan D. Wolff, Maida Oringher Lerner, Matthew B. Welling
"Cybersecurity Maturity Model Matures: DoD Adds New Requirements to Draft Cybersecurity Certification," Government Contracts Bullet Points (September 10, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Uncontrolled Information: DoD Audit Finds Contractor Lapses in Protecting Controlled Unclassified Information ," Government Contracts Bullet Points (August 2, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DCMA Revises Cyber Supply Chain Review: Updated Guidebook Modifies Audit Standards," Government Contracts Bullet Points (July 16, 2019). Contacts: Evan D. Wolff, Nicole Owren-Wiest, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Double Whammy: NIST Unveils Draft Enhanced Security Requirements and Revisions to NIST SP 800-171," Government Contracts Bullet Points (June 21, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Previews New Third-Party Cyber Certification Requirements," Government Contracts Bullet Points (June 17, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Navy Identifies Defense Industrial Base Cyber Shortcomings in New Report," Government Contracts Bullet Points (March 22, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DCMA’s Cybersecurity Oversight Takes Shape: Revised CPSR Guidebook Outlines DFARS Safeguarding Clause Audit Standards," Government Contracts Bullet Points (March 6, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Christopher D. Garcia, Nicole Owren-Wiest, Michael G. Gruden, CIPP/G
"Upping the Cyber Oversight Ante: DoD Deploys DCMA to Audit Contractor Supply Chain Compliance," Government Contracts Bullet Points (January 28, 2019). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Nicole Owren-Wiest, Michael G. Gruden, CIPP/G
"GAO Recommends Enhancements to TSA's Cyber and Physical Security Programs," Privacy Law Alert (January 3, 2019). Contacts: Evan D. Wolff, Maida Oringher Lerner, Matthew B. Welling, Paul M. Rosen
"DoD's Own Cyber Monday Deal: Releasing DFARS Cyber Enhancement Guidance," Government Contracts Bullet Points (November 27, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"FY 2019 NDAA – Cyber Focus," Government Contracts Bullet Points (August 20, 2018). Contacts: Evan D. Wolff, Paul M. Rosen, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"NIST Offers a Two-for-One Special on Cybersecurity Updates," Government Contracts Bullet Points (June 20, 2018). Contacts: Paul M. Rosen, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Michael G. Gruden, CIPP/G
"Forget The Showers. April Brings Flurry of New Cyber Guidance.," Government Contracts Bullet Points (May 1, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"Final Draft of NIST SP 800-171A Gives Contractors Something to Sample," Government Contracts Bullet Points (March 1, 2018). Contacts: Kate M. Growley, CIPP/G, CIPP/US, Evan D. Wolff, Maida Oringher Lerner, Michael G. Gruden, CIPP/G
"DoD Meets Contractors Half-Way at Industry Information Day," Government Contracts Bullet Points (June 28, 2017). Contacts: Evan D. Wolff, Paul M. Rosen, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"President Issues Executive Order to Strengthen Cybersecurity of Federal Networks and U.S. Critical Infrastructure," (May 12, 2017). Contacts: Evan D. Wolff, Paul M. Rosen, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Justin Kingsolver
"Home Depot Settles Major Data Breach Suit with Financial Institutions for $25 Million," Privacy Law Alert (March 13, 2017). Contacts: Justin Kingsolver, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"This Month in International Trade — February 2017," International Trade Bulletin (March 9, 2017). Contacts: John B. Brew, Frances P. Hadfield, Edward Goetz, Jeffrey L. Snyder, Carlton Greene, David (Dj) Wolff, Ian A. Laird, Lorraine M. Campos, Sarah Bartle, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Eduardo Mathison
"NYDFS Implements First-In-The-Nation Cybersecurity Rule for Covered Financial Services Companies," (February 28, 2017). Contacts: Evan D. Wolff, Carlton Greene, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"NIST Updates Cybersecurity Framework (CSF)," Privacy Law Alert (January 18, 2017). Contacts: Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Matthew B. Welling
"Privacy for Everyone! New FAR Rule Imposes Mandatory Training Requirements for Employees Handling PII," Government Contracts Bullet Points (December 28, 2016). Contacts: Gail D. Zirkelbach, Peter Eyre, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Nkechi Kanu
"Cleared Contractors Under the Gun As Insider Threat Program Deadline Approaches," Government Contracts Bullet Points (November 17, 2016). Contacts: Adelicia R. Cliffe, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Evan D. Wolff
"Heads Up! CFATS Requirements Reinstated," Privacy Law Alert (November 9, 2016). Contacts: Evan D. Wolff, Maida Oringher Lerner
"The Wait Is Over: Final DFARS Safeguarding Rule Published Today," Government Contracts Bullet Points (October 21, 2016). Contacts: Evan D. Wolff, David Z. Bodenheimer, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Cyber Commission Seeks Public Comments on Enhancing Cybersecurity in the Digital Economy," Privacy Law Alert (August 12, 2016). Contacts: Evan D. Wolff, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Kate M. Growley, CIPP/G, CIPP/US
"Presidential Policy Directive Lays Groundwork for National Incident Response Plan," Privacy Law Alert (July 28, 2016). Contacts: Evan D. Wolff, Jeffrey L. Poston, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Kate M. Growley, CIPP/G, CIPP/US, Charles Baek
"DHS and DOJ Publish Joint Guidelines for Voluntary Sharing Cyber Threat Indicators and Defensive Measures with Federal Government," Government Contracts Bullet Points (June 17, 2016). Contacts: Evan D. Wolff, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Matthew B. Welling
"Department of Defense Adds New Requirements to National Industrial Security Program Operating Manual," Government Contracts Bullet Points (June 3, 2016). Contacts: David Z. Bodenheimer, Evan D. Wolff, Maida Oringher Lerner, Mark A. Ries, Jonathan M. Baker
"Setting the Floor: New FAR Rule Defines Minimum Contractor Information System Safeguarding," Government Contracts Bullet Points (May 17, 2016). Contacts: David Z. Bodenheimer, Alan W. H. Gourley, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"President's Cyber Action Plan Once Again Spotlights the Private Sector," Privacy Law Alert (February 10, 2016). Contacts: Evan D. Wolff, Kate M. Growley, CIPP/G, CIPP/US, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Matthew B. Welling
"DoD Issues Long-Awaited Interim Rule on Cyber Requirements and Cloud Services," Government Contracts Bullet Points (September 3, 2015). Contacts: David Z. Bodenheimer, Evan D. Wolff, Peter Eyre, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US, Olivia Lynch
"What the OMB Cybersecurity Proposal Does and Doesn't Do," Government Contracts Bullet Points (August 28, 2015). Contacts: Evan D. Wolff, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Economic Espionage Poses Real Risks and New Burdens for Universities," Privacy Law Alert (July 6, 2015). Contacts: Laurel Pyke Malson, Evan D. Wolff, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Managing Cybersecurity: What the Mining Industry Should Know and Do," Mining Law Monitor (Summer 2015). Contacts: Evan D. Wolff, Maida Oringher Lerner
"Inching Towards Uniformity – Proposed Rule Governing Controlled Unclassified Information," Government Contracts Bullet Points (May 14, 2015). Contacts: Alan W. H. Gourley, Maida Oringher Lerner, Kate M. Growley, CIPP/G, CIPP/US
"Cyber Executive Order Continues the Push for Public-Private Partnerships," Privacy Law Alert (February 20, 2015). Contacts: Evan D. Wolff, Maida Oringher Lerner, Peter B. Miller, CIPP/G/US/E, CIPM, CIPT, Kate M. Growley, CIPP/G, CIPP/US
"DHS Seeks Comments on Changes to Its CFATS Rule," Environment & Natural Resources Law Alert (August 18, 2014). Contacts: Evan D. Wolff, Maida Oringher Lerner, Daniel W. Wolff, Warren Lehrenbaum
"EPA Signals Changes to Its Risk Management Plan Rule," Environment & Natural Resources Law Alert (August 4, 2014). Contacts: Daniel W. Wolff, Warren Lehrenbaum, Evan D. Wolff, Maida Oringher Lerner

In the News

Government Contracts Group of the Year: Crowell & Moring
January 6, 2016 — Law360
Expert Tells Federal Contractors to Play It Safe, Invest in Compliance
May 12, 2015 — Bloomberg BNA
Lawyers Can Recommend Best Practices to Mitigate Cyber Risks, Attorneys Advise
May 12, 2015 — BNA

Firm News & Announcements

Feb.22.2019	Law360 Names Crowell & Moring's Government Contracts Group a "Practice Group of the Year" for the Ninth Consecutive Year
Jan.09.2015	Crowell & Moring's Government Contracts Group Named to Law360's "Practice Groups of the Year" for Fifth Consecutive Year

Practices

Focus Areas –+

Industries –+

Education

Admissions