Helping individuals, companies, and organizations understand key legal and practical considerations for promoting compliance and making better business decisions in these types of federal, state, and local government contracting matters MORE

Cyber, Data Security, and Privacy

Subscribe to Cyber, Data Security, and Privacy via RSS

On Tuesday, March 3, 2020, Stinson partners Susan Warshaw Ebner and Eric Whytsell will be presenting on “Cybersecurity Maturity Model Certification (CMMC): Guarding the Keys to the Kingdom” at a National Defense Industrial Association (NDIA) Rocky Mountain Chapter event in Colorado Springs, Colorado. The presentation will highlight the evolution of and latest information about the

Earlier this month, the National Security Agency (NSA) discovered a serious security flaw in Microsoft Windows 10 cryptographic functionality, CVE-2020-0601.That security flaw could render trust certifications used to authenticate sources in communications and files vulnerable to spoofing or attack. As the NSA Cybersecurity Advisory notes, “[e]xploitation of the vulnerability allows attackers to defeat trusted

On January 16, 2020, the National Institute of Standards and Technology (NIST) issued its NIST Privacy Framework Version 1.0 (Privacy Framework). The Privacy Framework follows the same type of structure as the NIST Framework for Improving Critical Infrastructure Cybersecurity, which was first issued in February 2014 (NIST Cybersecurity Framework).

Specifically, NIST identifies the Privacy Framework

As part of its years-long project to update and revise the International Traffic in Arms Regulations (ITAR) and better align them with the Export Control Regulations, the Department of State (DoS) recently amended the ITAR with an interim rule to address another group of amendments first proposed in June of 2015. The new rule defines