Cybersecurity Compliance, Risk Management, and Insurance

Overview

Cybersecurity Compliance, Risk Management, and Insurance

Topics include:

A review, analysis and update of the rules, regulations, policies, and practices from contract formation through contract administration
The compliance implications of cybersecurity requirements throughout the contracting cycle and new supply chain procedures
Agency-specific rules, FAR, DFARS requirements and progress toward harmonization of the rules
Compliance reporting
Federal risk management programs
Insurance coverage

Dates/Locations

No upcoming dates/locations at this time

Agenda

9:00 AM - 4:00 PM

9:00AM Regulatory and Technical Overview

1. Adversaries and Threats

2. Definitions from Denial of Service to Zero-Day Exploits

3. Regulations in Perspective

4. The NIST Framework

5. Federal Agencies – from Commerce through the DoD to the Veterans Administration

6. DFARS and new DFARS Requirements

7. Unclassified Controlled Technical Information

8. Safeguarding of Information

9. Proposed Regulations

10. Proposed/Pending Legislation

10:30AM Break

10:45AM Integrating Cybersecurity Into Federal Acquisitions

1. Federal Cybersecurity Guidance

a. Executive Orders

b. DoD Initiatives

c. OMB Guidance

2. Analysis of the Existing References

3. Cybersecurity Acquisitions from “Bolt-On” to “Baked-In”

4. Cyber Risk Management

5. Acquisition Life Cycle Impacts

a. Statements of Work

b. Solicitations

c. Evaluation Criteria

6. Acquisition Planning Best Practices

7. Source Selection Best Practices

8. Program and Project Management

9. The Shift from Compliance to a Risk-Based Management Framework

10. Cybersecurity Integration into Program Acquisition, Execution, and Support

12:00PM Lunch Break

1:00PM Compliance and Supply Chain Risk

1. The Supply Chain Focus and Significance

2. Supply Chain Safeguards

3. Cybersecurity Flowdowns

4. DoD Authority

5. Covered Procurements

6. Prime Contractor Considerations

7. Subcontractor Considerations

8. Subcontract Terms and Conditions

9. Export Issues

10. Cyber Certifications and Qualifications

2:30PM Break

2:45PM Mitigating Cybersecurity Risks

1. Risk Management and Insurance

2. Insurance as a Risk-Sharing Mechanism

3. Types of Insurance

4. Insurance Coverage, Terms and Conditions

5. Insurance Risk Assessment

6. Existing Policies and Coverage

7. Risk Exposure and Liability

8. Insurance Claims

9. The Cybersecurity Insurance Audit

10. Reputational Harm

11. Insurance Premiums

12. Coverage Decision-Making

4:00PM Adjournment

Experts

Eric Crusius

Partner, Holland & Knight

Eric, a Partner at Holland & Knight specializing in Government Contracts, Internet/Technology Law, and representing businesses of all shapes and sizes, was named a Super Lawyers Rising Star. This honor is only given to the top 2.5% of attorneys who meet certain criteria. Eric has appeared as a g...

See Full Bio

Accreditation

See Individual Courses For Available Credits

Certificates of Completion are provided to all seminar participants who attend Federal Publications Seminars courses following the event, upon request.

CPE: Continuing Professional Education

Field of Study: Specialized Knowledge

Delivery Method: Group-Live Classroom

Federal Publications Seminars is affiliated with West Professional Development and is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.

For more information regarding administrative policies such as refunds, cancellations and complaints, please contact Federal Publications Seminars at 888.494.3696.

CPE Hours

This program is eligible for: 6.5 (CPE) hours of credit

Program Level: n/a

Program Prerequisite: n/a

Advance Preparation: n/a

Method: n/a

CLP: Continuous Learning Points

Approved for CLP by Defense Acquisition University

Defense Acquisition Workforce members must acquire 80 Continuous Learning Points (CLP) every two years from the date of entry into the acquisition workforce for as long as the member remains in an acquisition position per DoD Instruction 5000.66. We will provide you with documentation of points awarded for completing the event.

CLP Hours

This program is eligible for: 6.0 (CLP) hours of credit

CLE: Continuing Legal Education

States have widely varying regulations regarding MCLE credit. LegalEdcenter is an approved provider in AL, AK, AR, CA, GA, IL, ME, MO, MS, NC, ND, NE, NH, NJ, NM, NV, NY, OH, OK, PA, RI, SC, TN, TX, UT, VA, VI, VT, WA, WI, and WV. Credit may be applied for in other jurisdictions on request and in accordance with state MCLE rules.

Please note that because some states are changing their policy on CLE reporting, you will need to fill out the request for credit from Federal Publications Seminars within 10 business days, or we may not be able to issue credits for the program.

CLE Hours

This program is eligible for: 5.5 (60 minutes), (50 minutes)

Travel

No travel information is available at this time

Level

100

Basic or fundamental subject matter is covered. Courses are geared to general knowledge or can be taken as a refresher.
200

Specific topics or issues within a topic area are covered. Students should be familiar with terms of art and general concepts concerning the course topic.
300

Workshops and class discussions cover specific subject matter in-depth, and participation is strongly encouraged. Attendees should have at least 2-3 years' experience in the area of study.
400

Courses build upon students' knowledge and experience, and cover complex issues within the subject matter. Should have 4-5 years' mastery of subject for in-depth analysis.
500

Masters-level programs designed for professionals with 5+ years' experience. Courses cover in-depth and technical analysis on specific subjects and updates on current issues.