Of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting Fernand Lavallee, Partner, Jones Day ©2015.

Slides:

Advertisements

Similar presentations

Contract and Project Management: A Field Perspective Moderator Michael Peek, PE CCE CFM Office of Engineering and Construction Management.

Advertisements

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

Contractor Code of Business Ethics and Conduct Laura K. Kennedy Senior Vice President, Ethics and Compliance SAIC.

DII Best Practices Forum: New Developments Peter J. Eyre Crowell & Moring © Crowell & Moring LLP All Rights Reserved. June 23, 2011.

Federal Acquisition Service U.S. General Services Administration Information Technology Government Council ITIGC Quarterly Meeting Policy Update Mark J.

Overview of New Rules Keith Waye Government Contracting Small Business Administration.

CENTRAL CONTRACTOR REGISTRATION (CAGE CODES) DFARS Case 2003-D040 DFARS Parts 204, 212, 213 and 252 are amended to remove policy on Central Contractor.

Presented By the Office of Research Integrity & Assurance June 2010.

Congress and Contractor Personal Conflicts of Interest May 21, 2008 Jon Etherton Etherton and Associates, Inc.

UID Discussion DAEC October 7, UID Status DoD’s policy issued July 29, 2003 Serious implementation questions exist based on draft DFARS rule.

National Institute of Standards and Technology 1 NIST Guidance and Standards on System Level Information Security Management Dr. Alicia Clay Deputy Chief.

Background June 2011– DoD Proposes New DFARS Rule for Protecting Controlled, Unclassified Information Industry meeting scheduled for November 15, 2011.

Office of Business Development Training

Complying With The Federal Information Security Act (FISMA)

Hot Topics 1 Executive Compensation Caps Department of Labor Initiatives Safeguarding Information Supply Chain Risk Counterfeit Electronic Items Fair and.

FY2010 PEMP Notable Outcomes October 15, FRA, LLC Board of Directors 10/15-16/2009 Office of Quality and Best Practices Performance Evaluation Management.

DFARS & What is Unclassified Controlled Technical Information (UCTI)?

Presented By the Office of Research Integrity & Assurance.

Publication of Agency Procurement Regulations Karen L. Manos Acquisition Reform & Experimental Processes Committee November 30, 2004.

Defense Industry Initiative (DII) Best Practices Forum June 6, 2013 MVLE, Inc. Creating Futures One Person at a Time Bill Ahlberg Sr. Director of Federal.

SERVICES ACQUISITION REFORM ACT OF 2003 A STATUS REPORT Alan Chvotkin Senior Vice President and Counsel Professional Services Council DEFENSE ACQUISITION.

Compliance and Ethics Training Overview

New FAR Ethics Requirements Richard W. Oehler Perkins Coie LLP 1201 Third Avenue Suite 4800 Seattle, WA (206)

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

COMPETITION REQUIREMENTS

Certification and Accreditation CS Phase-1: Definition Atif Sultanuddin Raja Chawat Raja Chawat.

Federal Acquisition Service U.S. General Services Administration June 3, 2013 Joint Working Group on Improving Cybersecurity and Resilience through Acquisition.

ETHICS, CONTROLS AND DISCLOSURE: EXPLORING THE NEW FINAL RULE Robert J. Sherry K&L Gates Dallas, TX / San Francisco, CA December 3, 2008.

1 Always Changing / Always Challenging Accounting for Government Contracts.

Department of Energy June 16, 2015 Executive Order (EO) 13673: Fair Pay and Safe Workplaces Jean Seibert Stucky Assistant General Counsel for Labor and.

Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.

A Rule Change A Day: Inside Counsel's Guide to Government Contracting Under the New Administration May 20, 2009 Presented by: WMACCA Sponsored by: Womble.

Policies and procedures for developing acquisition plans; determining whether to use commercial or Government resources; whether it is more economical.

Federal Acquisition Service U.S. General Services Administration Management Services Center Industry Day Upcoming Changes Affecting the MAS Program Mark.

The Culture of Healthcare Privacy, Confidentiality, and Security Lecture d This material (Comp2_Unit9d) was developed by Oregon Health and Science University,

Federal Information Security Management Act (FISMA) By K. Brenner OCIO Internship Summer 2013.

1 And...the Rules-of-the-Road on the Promulgation of Government Contract Clauses/Regulations Are...? Charles E. Rumbaugh Rumbaugh ADR Offices

Of XX Government Contracts Statutes, Regulations, Executive Orders and Policies Rand Allen, Partner, Wiley Rein LLP ©2015 PubKLearning. All rights reserved.1.

Of XX Cybersecurity in Government Contracting David Z. Bodenheimer, Partner, Crowell & Moring LLP ©2015 PubKLearning. All rights reserved.1 The Federal.

Of XX Government Contracts Statutes, Regulations, Executive Orders & Policies Daniel Abrahams, Partner, Brown Rudnick LLP ©2015 PubKLearning. All rights.

Of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting W. Jay DeVecchio, Partner, Jenner & Block.

Of XX Government Contracts Statutes, Regulations, Executive Orders & Policies Stu Nibley, Partner, K&L Gates LLP ©2015 PubKLearning. All rights reserved.1.

Introduction and Overview of Information Security and Policy By: Hashem Alaidaros 4/10/2015 Lecture 1 IS 332.

RECOMMENDATIONS OF THE GOVERNOR ’ S TASK FORCE ON CONTRACTING AND PROCUREMENT REVIEW Report Overview PD Customer Forum September 2002.

Privacy Act United States Army (Managerial Training)

Chapter 8 Auditing in an E-commerce Environment

Government Contract Law – Post Award Shraddha Upadhyaya Contract Law Division U.S. Department of Commerce Office of General Counsel GSA Training Conference.

Connections II Acquisition U.S. General Services Administration Connections II Industry Day April 13th, 2010.

Donna M. Jenkins, Director National Aeronautics and Space Administration (NASA) Use Of Past Performance Information June 10, 2014 William P.

Safety & Health Considerations in Accommodating Commercial Activties David Loyd, JSC Safety & Test Operations 2013 NASA Safety Directors & Occupational.

Internal Control Process at Geneseo. Objectives Understand the objectives of effective internal controls Describe Geneseo’s internal control program Accurately.

Regulation Highlights Kimberly Heifetz May 15, 2012.

Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.

Small Business and Subcontracting. Subcontracting for Small Business 6 steps to successful subcontracting 6. Report Contractor performance 1. Consider.

1 Changes to Regulations Governing Personal Conflicts of Interest and Organizational Conflicts of Interest Breakout Session # C08 Name: Barbara S. Kinosky,

TGIC Cyber-Security for Government Contractor Information Systems

Safeguarding CDI - compliance with DFARS

SERVICES ACQUISITION REFORM ACT OF 2003 A STATUS REPORT

Safeguarding Covered Defense Information

Small Business and Subcontracting.

Introduction to the Federal Defense Acquisition Regulation

Special Publication Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations Dr. Ron Ross Computer Security.

Safeguarding Covered Defense Information

ATD session 2: compliancy versus mission assurance

NRC Cyber Security Regulatory Overview

Supplier Information Session Safeguarding Covered Defense Information and Cyber Incident Reporting, DFARS August 16, 2016 Christian Ortego.

UConn NIST Compliance Project

DFARS Cybersecurity Requirements

MBUG 2018 Session Title: NIST in Higher Education

EDUCAUSE Security Professionals Conference 2018 Jason Pufahl, CISO

Presentation transcript:

of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting Fernand Lavallee, Partner, Jones Day ©2015 PubKLearning. All rights reserved. 1 Is a Class Deviation Appropriate? –Generally federal agencies are required to provide notice and afford the public an opportunity to comment on proposed changes prior to enacting significant regulatory changes. FAR 1.301(b); –Public meetings to solicit/obtain additional views and discussion on significant regulatory revisions is encouraged. FAR When regulatory change is intended to be permanent, a FAR revision – not a Deviation – should be proposed. FAR When a class deviation is needed on a permanent basis, a FAR revision should be proposed. GSAR ; Class deviations are expected to expire in 12 months unless extended. GSAR (e)(1). 2.Court of Federal Claims held use of a class deviation to implement a uniform contract clause violates the FAR and Office of Federal Procurement Policy Act § 22, it may be unenforceable. Sunoco, Inc. v. United States, 59 Fed.Cl. 390, 396 (2004). 3.This Deviation will have a material effect beyond the internal operating procedures of the GSA. - Effect on subcontractors; disproportionate impact on Small Business Concerns 4.No “urgent Government need” compelling Deviation.

of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting Fernand Lavallee, Partner, Jones Day ©2015 PubKLearning. All rights reserved. 2 Department of Defense's (DoD) proposed Interim Rule on Network Penetration Reporting (Aug. 26, 2015): –Adds new clause: DFARS , Limitations on the Use and Disclosure of Third-Party Contractor Reported Cyber Incident Information; Revises DFARS ; –Establishes NIST SP as the baseline for adequate security for covered defense systems (change from current subset of NIST SP controls); –Continues the 72-hour rapid reporting requirement for incidents affecting covered contractor information systems/covered defense information or ability to perform operationally critical contracts.

of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting Fernand Lavallee, Partner, Jones Day ©2015 PubKLearning. All rights reserved. 3 Impacts of the DoD proposed Interim Rule: –New DFARS clause applies to a broader category of information (called “covered defense information”) which includes export controlled information and a revised definition of Unclassified Controlled Technical Information (UCTI); –Scope of reportable cyber incidents significantly broadened; –Uncertainty associated with replacement of the detailed chart of security controls from NIST SP with the general reference to the security families from NIST SP ; –Subcontractors are now explicitly required to report cyber incidents “up the chain” to the ultimate Prime Contractor and directly to DoD.

of XX Data Rights, Intellectual Property, Information Technology and Export Controls in Government Contracting Fernand Lavallee, Partner, Jones Day ©2015 PubKLearning. All rights reserved. 4 And a “Sleeper” for GSA Schedule Commercial Item contractors: U.S. General Services Administration's (GSA) GSAR (k) clause: –Applicable to unclassified IT resources; –Requires federal contractors to afford the GSA access to both the contractor's and subcontractors' installations, operations, documentation, databases, IT systems and devices, and personnel used in performance of the contract regardless of the location. –Access is to extent required in the judgment of the GSA for the government to conduct an inspection, evaluation, investigation or audit (including vulnerability testing) to safeguard against threats and hazards to the integrity, availability, and confidentiality of GSA data (including that simply "transiting“ contractor's/subcontractors' systems) and to preserve evidence of computer crimes.