As we near the end of the year and look back on 2017, both the number of data breaches and magnitude of these breaches stand out. There have been over forty very significant breaches of data stored on cloud computing systems in the past year – and it is safe to assume that we will… Continue Reading
Last week, I spoke in Portland, Oregon about cybersecurity requirements for federal contractors at an all-day seminar hosted by the Pacific Northwest Defense Coalition. Speakers from the Department of Defense, the FBI, and consultants specializing in cybersecurity compliance offered interesting and (sometimes different) perspectives on compliance, which led to candid and robust discussion. Many thanks… Continue Reading
Last week, the Department of Defense adopted as final, with several changes, its interim rule amending the DFARS on “Network Penetration Reporting and Contracting for Cloud Services.” The changes went into effect immediately, as of October 21, 2016.
Among the changes in the final rule, DFARS 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident… Continue Reading