The federal government has kept busy this summer by issuing multiple regulations impacting government contractors’ cybersecurity. First, the Department of Defense released the 2019 National Defense Authorization Act (NDAA), which included notable cybersecurity provisions involving foreign ownership and Controlled Unclassified Information (CUI), among others. Second, Congress passed the NIST Small Business Cybersecurity Act requiring the National Institute of Standards and Technology (NIST) to develop guidance and resources for small-and-medium-sized businesses to minimize cybersecurity risks.
This recent legislation emphasizes the federal government’s increased emphasis on safeguarding government data. For more information, please contact the professional(s) listed here, or your regular Crowell & Moring contact.