Susan B. Cassidy

December 17, 2019, Inside Government Contracts

On December 13, the Department of Defense (“DoD”) released the latest version of its Cybersecurity Maturity Model Certification (“CMMC”).  This is the third iteration of the draft model that DoD has publicly released since it issued the first draft in October.  (We previously discussed Version 0.4 and Version 0.6 of the CMMC in prior blog...… Continue ...

December 2019, Government Contracting Law Report

November 27, 2019, Covington Alert

The Department of Commerce (“the Department”) has issued a proposed rule implementing the May 15, 2019 Executive Order entitled “Securing the Information and Communications Technology and Services Supply Chain,” which we previously analyzed here. Once finalized and effective, the regulations will govern the process and procedures that the Secretary of Commerce ...

November 26, 2019, Inside Government Contracts

Last week, the FAR Council issued a Final Rule, setting forth new FAR provisions that require the reporting of certain counterfeit and suspect counterfeit parts and certain major or critical nonconformances to the Government – Industry Data Exchange Program (“GIDEP”).[1]  This Final Rule comes more than five years after the rule was first proposed in...… ...

November 13, 2019, Inside Government Contracts

On November 7, the Office of the Assistant Secretary of Defense for Acquisition released Version 0.6 of its draft Cybersecurity Maturity Model Certification (CMMC) for public comment. The CMMC was created in response to growing concerns by Congress and within DoD over the increased presence of cyber threats and intrusions aimed at the Defense Industrial...… ...

November 6, 2019, Covington Alert

On November 5, 2019 the Department of Justice (DOJ) announced the launch of the “Procurement Collusion Strike Force” (PCSF). The creation of the PCSF marks a significant development in the government procurement enforcement landscape. Creation of the PCSF prioritizes the DOJ’s focus on government procurement offenses. As part of that effort, DOJ has launched a ...

October 24, 2019, Law360

Susan Cassidy spoke with Law360 about the Department of Defense’s goal for its Cybersecurity Maturity Model Certification (CMMC) and its impact on join bid contractors.   Ms. Cassidy says such teaming arrangements are already complicated and can take years to put together for big defense procurements. Although the DOD has said cybersecurity compliance will be ...

October 18, 2019, National Defense

October 2, 2019, Inside Government Contracts

The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency’s (“CISA”) Information and Communications Technology (“ICT”) Supply Chain Risk Management Task Force (the “Task Force”) recently released an interim public report.  The report describes the Task Force’s efforts over the last year to develop recommendations for securing the ...

October 2019, Women, Influence & Power in Law Conference, Washington DC

September 11, 2019, Inside Government Contracts

Almost a year after Assistant Secretary of the Navy James Geurts issued his September 28, 2018 memorandum (Geurts Memo) imposing enhanced security controls on “critical” Navy programs, the Navy has issued an update to the Navy Marine Corps Acquisition Regulations Supplement (NMCARS) to implement those changes more formally across the Navy.  Pursuant to this ...

September 11, 2019, Gov Info Security

Susan Cassidy, Samantha Clark, Ryan Burnette, and Ian Brekke are mentioned in Gov Info Security regarding their blog post analyzing the CMMC draft. "The guidance offers no insight into how DOD will determine the CMMC certification level required for each contract solicitation or whether it intends to standardize a process for making such determinations across ...

September 6, 2019, Inside Government Contracts

On September 4, the Office of the Assistant Secretary of Defense for Acquisition released Version 0.4 of its draft Cybersecurity Maturity Model Certification (CMMC) for public comment.  The CMMC was created in response to growing concerns by Congress and within DoD over the increased presence of cyber threats and intrusions aimed at the Defense Industrial...… ...

September 3, 2019, Inside Government Contracts

The FAR Council released an Interim Rule in August implementing part of Section 889 of the John S. McCain National Defense Authorization Act for Fiscal Year 2019.  In this briefing, we highlight points where the Interim Rule provides clarity; definitional issues that remain unresolved; and new procedural requirements that government contractors should track. The ...

July 16, 2019, Inside Government Contracts

The Department of Defense (“DoD”) recently announced the development of the ”Cybersecurity Maturity Model Certification” (“CMMC”), a framework aimed at assessing and enhancing the cybersecurity posture of the Defense Industrial Base (“DIB”), particularly as it relates to controlled unclassified information (“CUI”) within the supply chain. The Office of the Under ...

June 20, 2019, Inside Government Contracts

On June 19, 2019, the National Institute of Standards and Technology (“NIST”) announced the long-awaited update to Special Publication (“SP”) 800-171 Rev. 1, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, which includes three separate but related documents. First, NIST has announced an update to SP 800-171 Rev. 1, which ...

June 20, 2019, The Coalition for Government Procurement

June 18, 2019

WASHINGTON—Covington is representing Peraton in its recently announced deal to acquire Solers, Inc., a leading provider of software development and systems integration for space situational awareness, satellite ground systems and operations, cybersecurity engineering, and enterprise cloud-based solutions. Covington is handling government contracts, national ...

June 14, 2019, Government Contracting Law Report

May 16, 2019, Covington Alert

We are writing to provide an update on two important developments in U.S. national security-based regulation of trade: (1) a new, potentially expansive Executive Order on information and communications technology supply into the U.S. market, and (2) the Department of Commerce’s action to add Huawei to the Entity List.

May 16, 2019, National Defense

May 2019, Government Contracting Law Report

2019, American Bar Association

Our cross-disciplinary Internet of Things initiative contributed to the ABA's first book on IoT, The Internet of Things: Legal Issues, Policy, & Practical Strategies.   Laura Kim and Jennifer Johnson authored the chapter “U.S. Regulatory Framework for IoT,” with contributions from Sarah Wilson (product safety); Wade Ackerman, Elizabeth Guo, Christopher Hanson, ...

April 2, 2019, National Defense

March 28, 2019, Inside Government Contracts

On March 26, 2019, the Senate Armed Services’ Subcommittee on Cybersecurity held a hearing to receive testimony assessing how the Department of Defense’s (“DOD”) cybersecurity policies and regulations have affected the Defense Industrial Base (“DIB”). To gain a better understanding of the DIB’s cybersecurity concerns, the Subcommittee invited William LaPlante, ...

March 19, 2019, Law360

February 4, 2019, Federal News Network

Susan Cassidy is quoted in Federal News Network regarding the Department of Defense’s tightening of cybersecurity enforcement regulations on contractors.   Ms. Cassidy says, “DoD wants to get everyone to a certain cybersecurity level. Now they are tightening up and they are going to make it a performance and award differentiator.” She said before an award, ...

January-February 2019, The Journal of Robotics, Artificial Intelligence & Law

October 15, 2018, Law360

October 2018, Contractor's Guide to International Procurement, American Bar Association

September 12, 2018, Law360

August 30, 2018, Covington Alert

How well do you actually know your supply chain—from the materials you acquire to the software you include in your products or services? If you have not answered this question recently, you should consider adding it to your “to do” list. Not only does the U. S. Government want to know, it is increasingly imposing new compliance obligations on its contractors.

June 28, 2018, National Defense

June 18, 2018, Virginia State Bar Annual Meeting

May 15, 2018, Global Data Review

Susan Cassidy is quoted in a Global Data Review article regarding the focus on privacy by design by the International Organization for Standardization and the U.S. National Institute of Standards and Technology. Cassidy says that the anecdotal evidence she has from speaking to her private sector clients is that they are increasingly considering NIST guidelines, ...

May 1, 2018

WASHINGTON—Covington advised Elbit Systems Ltd. in its $120 million acquisition of the assets and operations of the privately owned U.S. company, Universal Avionics Systems. Elbit Systems is an international high technology company engaged in a wide range of defense, homeland security, and commercial programs throughout the world. Universal Avionics is a ...

March 26, 2018, Thomson Reuters' Westlaw Journal Government Contracts

March 19, 2018, Covington Advisory

Cyberattacks targeting defense contractors illustrate the need for cybersecurity, for thoughtful planning—and for insurance when security and planning prove insufficient. Understanding your insurance policies before things go wrong can help ensure financial protection when they do.

January 25, 2018

January 22, 2018, E-Commerce Times

Susan Cassidy is quoted in an E-Commerce Times article regarding efforts to create an online marketplace for government purchasers. "One model that was discussed would require a portal provider to contract with GSA to provide an online interface. Under this approach, suppliers would then sign up to use the portal, potentially via a contract with the portal ...

January 4, 2018, National Defense

January 2, 2018, Politico

Susan Cassidy is quoted in Politico Pro's "Morning Cybersecurity" newsletter regarding the December 31st deadline for defense contractors to meet minimum cybersecurity requirements for the systems they operate for the Pentagon. According to Cassidy, the cybersecurity rule presents “a problem for DoD because there’s a lot of subjectivity in what is ‘adequate ...

January 2, 2018, Law360

December 8, 2017, ABA Webinar

December 2017, Pratt's Government Contracting Law Report

November 24, 2017, Los Angeles Business Journal

Susan Cassidy is quoted in a Los Angeles Business Journal article regarding the difficulties that some defense contractors in Southern California were facing trying to meet the Department of Defense deadline of December 31, 2017 for implementing the cybersecurity controls in NIST Special Publication 800-171. Cassidy notes that the definition of the information ...

November 2017, Pratt's Government Contracting Law Report

October 31, 2017, Bloomberg Government

Susan Cassidy is quoted in a Bloomberg Government article regarding contractors' efforts to comply with new cybersecurity standards. According to Cassidy, the mandate that contractors develop cybersecurity plans—the most recent requirement added to the NIST list—is crucial for contractors. Contractors must “develop, document, and periodically update system ...

October 2017, Pratt's Government Contracting Law Report

August 1, 2017, Law360

July 2, 2017, San Antonio Express-News

Susan Cassidy is quoted in a San Antonio Express-News article regarding new cybersecurity requirements for contractors. According to Cassidy, "Essentially, the DOD wants its contractors to protect its information, because the DOD is a huge target, and its contractors are also a target." Commenting on the fact that over the years, contractors have been working ...

July 2017, Pratt's Government Contracting Law Report

June 2017, ACI 8th Advanced Forum on DCAA & DCMA Cost, Pricing, Compliance & Audits

March 2017, National Defense

March 2017, Pratt's Government Contracting Law Report

February 28, 2017

WASHINGTON—Covington represented semiconductor manufacturer Intersil Corporation in its $3.2 billion sale to Japan’s Renesas Electronics Corporation. The firm advised Intersil on aspects of the transaction involving Committee on Foreign Investment in the United States (CFIUS), Foreign Ownership, Control, or Influence (FOCI), trade controls, and government ...

January 17, 2017, Federal Contracts Report

Susan Cassidy is quoted in a Federal Contracts Report article regarding the fate of cybersecurity improvements made by the DoD under President Trump. According to Cassidy, “I would expect those to continue forward because I don't see a political will to say, ‘No you shouldn't protect this.’”  The nomination of former Sen. Dan Coats (R-Ind.) to serve as director ...

January 2017, Pratt’s Government Contracting Law Report

November 2016, Government Contracting Law Report

October 25, 2016, Inside Government Contracts

On October 21, 2016, the Department of Defense (DoD) issued its long-awaited Final Rule—effective immediately—imposing safeguarding and cyber incident reporting obligations on defense contractors whose information systems process, store, or transmit covered defense information (CDI). The Final Rule...

October 3, 2016, Federal Contracts Report

Susan Cassidy is quoted in a Federal Contracts Report article regarding the Defense Department’s updated cyber incident reporting rule. According to Cassidy, the rule succeeded in clarifying some industry concerns, but did not address them all. “They didn't take an opportunity to clarify everything you might have hoped they would.” For example, when asked ...

September 19, 2016, Covington Alert

On September 14, 2016, the National Archives and Record Administration (NARA) issued the “Controlled Unclassified Information Final Rule” (Final Rule), effective November 13, 2016, establishing consistent practices and procedures for safeguarding, disseminating, controlling, destroying, and marking Controlled Unclassified Information (CUI) across Executive ...

September 14, 2016, 2016 Covington Government Contracts Briefing: Solving Problems, Securing Opportunities

August 19, 2016, Inside Defense

Susan Cassidy is quoted in an Inside Defense article regarding the DOD’s proposed rule change to implement sections of the National Defense Authorization Acts for Fiscal Years 2013 and 2016 relating to commercial item acquisitions. According to Cassidy, "They were going to take out the 'of a type' commercial item, and that's been a big deal with DOD for a long ...

June 17, 2016, Covington Alert

In Universal Health Services Inc. v. U.S. ex rel. Escobar, No. 15-7 (Slip. Op. June 16, 2016), a unanimous Supreme Court affirmed the viability of the “implied false certification” theory of False Claims Act liability, at least in certain circumstances. This portion of the ruling was not unexpected given the overwhelming acceptance of implied certification among ...

May 31, 2016, Inside Cybersecurity

Susan Cassidy participated in a panel discussion at the annual cybersecurity conference at Georgetown University Law Center and is quoted in this Inside Cybersecurity article regarding the limited scope of liability protections under the new cyber info-sharing law. According to Cassidy, "Anything you create could be used in litigation against you," in referring ...

May 25, 2016, Panelist Speaker, Georgetown University 4th Annual Cybersecurity Law Institute

May 2016, National Defense Magazine

January 2016, National Defense

November 3, 2015, BNA Government Contracts

Susan Cassidy was quoted in this article.

November 2, 2015, Covington Alert

August 27, 2015, Covington Alert

August 27, 2015, Inside Cybersecurity

Susan Cassidy was quoted in this article.

August 13, 2015, Inside Cybersecurity

Susan Cassidy was quoted in this article.

August 12, 2015, Covington Alert

June 17, 2015, Bloomberg BNA Federal Contracts Report

June 9, 2015, Inside Cybersecurity

Covington's David Fagan and Susan Cassidy have authored this article for Inside Cybersecurity. 

June 9, 2015, InsideCounsel

December 11, 2014, American Bar Association

September 17, 2014, Law360

August 25, 2014, Law360

Susan Cassidy was quoted in this article.

July 22, 2014, Law360

July 22, 2014, Law360

Susan Cassidy, Scott Freling and Kayleigh Scalzo have co-authored this article about the U.S. Department of Defense issuing a proposed rule to amend the Defense Federal Acquisition Regulation Supplement (“DFARS”) in order to improve the efficiency and effectiveness of auditing contractors’ accounting systems, estimating systems, and material management and ...

July 18, 2014, Covington E-Alert

July 13, 2014, The Washington Post

Covington partner Susan Cassidy is quoted regarding a recent court decision by the Fourth Circuit that is set to change how much contractors who mislead the government face in potential penalties.  "That potential windfall acts as a strong incentive for people to file suits on behalf of the government, said Susan Cassidy, a partner at law firm Covington & ...

July 7, 2014, National Defense Magazine

Susan Cassidy and Mike Wagner authored this article on the increase of "false claims" suits.  Under a recent court decision by the Fourth Circuit, a federal government contractor may suddenly find itself facing potentially massive liability based solely on the number of invoices submitted in previous years, even if every one of those invoices was entirely ...

July 5, 2014, National Defense Magazine

July 3, 2014, Law360

July 3, 2014, Law360

Susan Cassidy and Mike Wagner write on the False Claims Act in this article for Law360:  "For the past four years, FCA enforcement has focused most heavily on the health care industry, recovering more than $2 billion a year in cases involving health care fraud. This article discusses a recent FCA ruling by the Fourth Circuit that, if allowed to stand, could ...

May 9, 2014, Covington E-Alert

April 28, 2014, Bloomberg BNA

Covington partner Susan Cassidy was interviewed for Bloomberg BNA regarding the General Services Administration's draft plan to manage cybersecurity risks in the federal acquisition process. The article states: “When you read the actual proposal from GSA, it's hard to figure out what they are going to do,” Covington & Burling LLP Partner Susan Cassidy said. ...

April 2014, West Briefing Papers

February 13, 2014, Covington E-Alert

January 29, 2014, Covington E-Alert

January 21, 2014, Covington E-Alert

January 9, 2014, Covington E-Alert

December 13, 2013, Panelist, American Bar Association, Section of Public Contract Law, Annual Fall Meeting

November 21, 2013, Covington E-Alert

May 10, 2013, Covington E-Alert

April 8, 2013, Covington E-Alert

April 2013, The Procurement Lawyer

February 12, 2013, Covington E-Alert

August 29, 2012, Covington E-Alert

July 31, 2012, Covington E-Alert

July 2, 2012

WASHINGTON, DC, July 2, 2012 — Covington & Burling is bolstering its government contracts practice by adding Susan Cassidy as a partner in its Washington, D.C. office. This marks Covington’s second high-profile addition to its government contracts practice in recent months and underscores the firm’s strong commitment to expand in this area of law. Robert Nichols ...

1997, Briefing Papers, Second Series, West Group