Michael G. Gruden

2 months ago | mondaq.com | Alexis Ward |Maida Oringher Lerner |Michael G. Gruden |Evan Wolff

In 2025, owners and operators of critical infrastructure willhave new security and information sharing obligations to considerunder the National Security Memorandum 22 ("NSM-22" orthe "Memorandum"). NSM- 22 replaces the Obama-eraPresidential Policy Directive 21: Critical Infrastructure Securityand Resilience (PPD-21). The Memorandum builds upon many of the foundations of PPD-21,while modernizing requirements and responsibilities to addresstechnological advancements and increase collaboration.

Oct 23, 2024 | mondaq.com | Peter Eyre |Adelicia R. Cliffe |Michael E. Samuels |Michael G. Gruden

As Crowell covered in a recent alert, the Department of Defense (DoD) on October 11, 2024 released a final rule (the "Final Program Rule") formalizing the requirements, assessment processes, and related governance for its Cyber Maturity Model Certification Program (CMMC).

Sep 2, 2024 | mondaq.com | Michael G. Gruden |Linda A. Malek |Eric Ransom |Neda M. Shaheen

On August 21, 2024, the National Institute of Standards and Technology (NIST) released the Second Public Draft of Digital Identity Guidelines (hereinafter, "Draft Guidelines") for final review. The Draft Guidelines introduce potentially notable requirements for government contractors using artificial intelligence (AI) systems. Among the most significant draft requirements are those related to the disclosure and transparency of AI and machine learning (ML).

Aug 30, 2024 | practicesource.com | Neda M. Shaheen |Michael G. Gruden |Eric Ransom

On August 21, 2024, the National Institute of Standards and Technology (NIST) released the Second Public Draft of Digital Identity Guidelines (hereinafter, “Draft Guidelines”) for final review. The Draft Guidelines introduce potentially notable requirements for government contractors using artificial intelligence (AI) systems. Among the most significant draft requirements are those related to the disclosure and transparency of AI and machine learning (ML).

Feb 18, 2024 | mondaq.com | Michael G. Gruden |Evan Wolff |Maria Alejandra del-Cerro |Jason Prince

On January 29, 2024, the Department of Commerce released a proposed rule: Taking Additional Steps To Address the National Emergency With Respect to Significant Malicious Cyber-Enabled Activities, which solicits comments regarding a proposed new set of regulations that would introduce significant new requirements for U.S.-based Infrastructure as a Service (IaaS) providers.