Holland & Knight LLP’s Post

Check out this short video where C3 board member and well-respected expert on government security laws and regulations, Robert Metzger speaks with Bill Wootton, C3's CRO, about NIST 800-171 Revision 3 and its impact on defense contractors. Watch now. https://lnkd.in/gnsSkSpE #governmentsecurity #CMMC #defensecontractors #NIST800-171 #cybersecurity *Mr. Metzger’s comments are not intended to constitute legal advice.

Insightful conversation alert! Our CRO Bill Wootton sat down with Bob Metzger to discuss proposed changes in NIST 800-171 R3. Bob expressed concerns about the number of organizationally defined parameters in R3, leaving too much room for interpretation. While R3 reflects a huge amount of thoughtful work, it may be more burdensome and expensive for most contractors. However, Revision 3 does a much better job of explaining what is expected to meet each of the controls, which can help contractors better understand those requirements. Stay tuned for more updates on this topic! #NIST #cybersecurity #contractors

CJIS Policy 5.9.3 is making significant changes to improve police departments' cybersecurity. What changes do you find the most challenging to implement? Let's discuss in the comments. #police #cybersecurity

In November 2018, President Trump signed into law the #Cybersecurity & Infrastructure Security Agency (CISA) Act to establish CISA as a successor agency to the Department of Homeland Security's National Protection & Programs Directorate. CISA's purpose is to reduce risk on the national level for critical infrastructure, and created this year's #SecureOurWorld program for #CybersecurityAwarenessMonth. https://bit.ly/46fCDsb #cybercontent

The FAR Council issued two proposed Federal Acquisition Regulation (FAR) rules covering cybersecurity for U.S. government contractors. In a first installment of a 2-part edition, this A&D Insights piece covers standardizing cybersecurity requirements for unclassified Federal information systems. Read more on these proposed rules during Cybersecurity Awareness month by counsel Stacy Hadeka and partners Mike Scheimer and Mike Mason. #Cybersecurity #FederalAcquisitionRegulation #Defense #GovernmentContractors

Read the latest article on Federal Acquisition Regulation (#FAR) proposed rules covering #cybersecurity for U.S. government contractors written by counsel Stacy Hadeka and partners Michael Scheimer and Michael Mason. Part 2 covers cyber threat, incident reporting and information sharing. #defense #governmentcontracts

IR Question of the Day x 2 FDAC | QOTD Do you consider threat actors criminals? Do you consider yourself a crime fighter? Please comment with why or why not. #cybersecurity #incidentresponse #crimefighter #qotd

Protection of CDI is key., understand the four corner model would help you establish the prominance of payment security in this day of age (4th Industrialization) #PaymentsSecurity #CombatingCyberSecurity

32 CFR part 236 revision is out, and the biggest change is that you no longer need a medium trust certificate for incident reporting, as long as you have access to the PIEE system. #dod #dib #cybersecurity #cmmc