Photo of Kate M. Growley, CIPP/G, CIPP/US

In this episode, hosts Evan Wolff and Kate Growley talk with Michael Gruden about what government contractors need to know about Federal Contract Information or FCI. Crowell & Moring’s “Byte-Sized Q&A” podcast takes the complex world of government contracts cybersecurity and breaks it down into byte-sized pieces.

ListenCrowell.com | PodBean | SoundCloud |

The National Institute of Standards and Technology (NIST) recently released the final version of NIST Special Publication (SP) 800-172, Enhanced Security Requirements for Protecting Controlled Unclassified Information. Designed to supplement the requirements in NIST SP 800-171—the applicable standard under DFARS 252.204-7012—800-172 provides 35 enhanced security requirements to protect controlled unclassified information (CUI) associated with

In this episode, hosts Evan Wolff and Kate Growley talk about what government contractors need to know about advanced persistent threats – or APTs. Crowell & Moring’s “Byte-Sized Q&A” podcast takes the complex world of government contracts cybersecurity and breaks it down into byte-sized pieces.

ListenCrowell.com | PodBean | SoundCloud | Apple Podcasts 

In this episode, hosts Kate Growley and Evan Wolff talk about the concepts of confidentiality, integrity, and availability in the cybersecurity context. Crowell & Moring’s “Byte-Sized Q&A” podcast takes the complex world of government contracts cybersecurity and breaks it down into byte-sized pieces.

ListenCrowell.com | PodBean | SoundCloud | Apple Podcasts 

On January 13, 2021, the Federal Communications Commission (FCC) published a final rule that requires advanced communications providers to review their equipment and services within their networks and either: (1) certify that they do not include any covered equipment; or (2) file an annual report with the FCC that identifies covered communications equipment or services

The Department of Defense (DoD) recently implemented additional procedures for the mitigation of cybersecurity risks in its supply chain. Designed to identify and mitigate cybersecurity and related supply chain risks throughout a program’s lifecycle, DoD Instruction 5000.90, Cybersecurity Acquisition Decision Authorities and Program Managers, requires program managers to:

  • Assess contractors’ cybersecurity posture, including, where

On January 1, 2021, the 116th Congress enacted the Fiscal Year 2021 National Defense Authorization Act (NDAA), which established, among other things, the National Artificial Intelligence Initiative Act of 2020 (Division E, Title LI, §§ 5101-5106) (hereinafter “the Initiative”), a program to award financial assistance to National Artificial Intelligence Research Institutes (Division E, Title LII,

On December 11, 2020, Congress presented to President Trump H.R. 6395, National Defense Authorization Act for Fiscal Year 2021. On December 23, 2020, President Trump vetoed the bill. Subsequently, the House voted on December 28, 2020 and the Senate voted on January 1, 2021 to override the veto.

This Act contains numerous provisions that

In this episode, hosts Evan Wolff and Kate Growley talk about what government contractors need to know about the Internet of Things and the recently passed IoT Cybersecurity Improvement Act. Crowell & Moring’s “Byte-Sized Q&A” podcast takes the complex world of government contracts cybersecurity and breaks it down into byte-sized pieces.

ListenCrowell.com |