Monday, March 1, 2021

Subscribers Only

Free

Tim Maurer Named as DHS Senior Counselor for Cybersecurity

Tim Maurer, director of the Cyber Policy Initiative at the Carnegie Endowment for International Peace, is joining the Department of Homeland Security as senior counselor for cybersecurity to Secretary Alejandro Mayorkas, a political appointment. Maurer recently finished a project with the World Economic Forum that concluded the global financial system was vulnerable to severe disruption […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Announces Three Key Appointments

The Cybersecurity and Infrastructure Security Agency acting executive director Brandon Wales has announced appointees to three key positions: Nitin Natarajan, formerly a director at Avantus Federal, will serve as deputy director. He will oversee the Cybersecurity and Infrastructure divisions, as well as the National Risk Management Center and the Emergency Communications Division. Eric Goldstein, who […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

NYDFS Issues Best Practices for Cyber Insurance Risk Management

Against the backdrop of the disruptions associated with the Covid-19 pandemic and SolarWinds cyber-espionage campaign, NYDFS has released guidance for insurers that underwrite cyber insurance policies and which contains a number of provisions expected to impact companies applying for or renewing cyber insurance coverage, not the least of which is a specific recommendation that insurers […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Ezra Church and the Impact of the CCPA

In a new post, Morgan Lewis partner Ezra Church, who counsels and defends companies in privacy and cybersecurity matters, discusses the impact of the California Consumer Privacy Act on US privacy law. Church is a Certified Information Privacy Professional (CIPP) and co-chair of the firm’s Class Action Working Group, and he recently helped lead the […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Here’s How to Prepare for CPRA and Proposed VCDPA Requirements Concerning Sensitive Information

One of the most notable features of the new California Consumer Privacy Rights Act (CPRA) and the proposed Virginia Consumer Data Protection Action (VCDPA)—which has now passed both houses of the Virginia legislature—is the establishment of special categories of “sensitive” information. Those categories are broadly defined in both the CPRA and the proposed VCDPA, capturing […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

GSA Ready to add CMMC Contractual Requirements

Language from the DoD's Cybersecurity Maturity Model Certification has been included in GSA's latest governmentwide acquisition contracts (GWACs), starting with the request for proposals...

NIST Shares Key Practices in Cyber Supply Chain Risk Management Based on Observations from...

A new publication from the National Institute of Standards and Technology (NIST) provides companies, government agencies, and other organizations with a set of practices that any organization can use to manage growing cybersecurity risks associated with their supply chains. NIST researched and compiled these practices knowing that organizations can no longer protect themselves by simply securing their […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

GSA Redesigns FedRAMP Website

The General Services Administration has launched a newly revamped FedRAMP website. FedRAMP, a part of the Technology Transformation Services, redesigned its website “to further empower agencies to use innovative cloud technologies and to continue driving security and protection of federal information.” The website provides in-depth information about FedRAMP’s authorization process, enabling stakeholders and customers to […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Eversheds Sutherland’s Michael Bahar on the Aftermath of the SolarWinds Orion Breach

As the cybersecurity community slowly recovers from the SolarWinds Orion breach, Security Magazine speaks to Michael Bahar, a leader in cybersecurity and privacy, about the aftermath of this attack. Bahar is a partner in the Washington D.C. office of Eversheds Sutherland (U.S.) LLP, and the firm’s Litigation practice. He was Deputy Legal Advisor to the […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

The Ongoing March toward Privacy Law in the US – A State Legislative Roundup

While we continue to await comprehensive US federal privacy legislation, and following California’s lead with its California Consumer Privacy Act of 2018, individual states are stepping up to the plate. Based on what we are already seeing in terms of the impressive volume of state-level proposed privacy legislation in the early days of 2021, it […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.