The Biden Administration released its Fall 2022 regulatory agenda (Regulatory Agenda) on Jan. 4, 2023. In it, the administration outlined regulations aimed at cybersecurity requirements for government contractors, the maritime industry, public companies and others. Taken together, these regulations are a stark reminder of the growing importance of design, implementation, testing and updating cybersecurity measures in all aspects of operations, including information systems, operational systems and information technology within operational systems. The regulations represent significant and more comprehensive cybersecurity obligations and regulatory review, as well as important contracting implications, for companies covered by these regulations.
Notable Examples
This Holland & Knight alert examines notable examples from the administration's agenda.
Assessing Contractor Implementation of Cybersecurity Requirements and Cybersecurity Maturity Model Certification (CMMC) Program (U.S. Department of Defense, or DoD). As discussed in a previous Holland & Knight blog, the DoD is rolling out its Cybersecurity Maturity Model Certification (CMMC) program. These regulations, which are expected in May 2023, will institute a program that will require all contractors in the DoD supply chain (excluding providers of commercial off-the-shelf products) to obtain a third-party or self-certification of their compliance with stated cybersecurity controls. The kind ..
Support the originator by clicking the read the rest link below.
