Morrison Foerster is an international law firm with lawyers practicing throughout the United States, Asia, and Europe. Click to discover more.

mofo_share_image.jpg

Morrison Foerster

common-default.jpeg

Terms / Notices

Cookies

Privacy Policy

Reporting Hotline

Attorney Advertising

Alumni

  Linkedin

MoFo LinkedIN

  Facebook

MoFo Facebook

YouTube

MoFo Youtube

Morrison Foerster - Footer

The FAR Council’s Proposed Cybersecurity Overhaul: Lots of Questions, but Only Some Answers

You have not solved the recaptcha challenge yet or session expired, try again.

Email Disclaimer

Disclaimer

Unsolicited e-mails and information sent to Morrison Foerster will not be considered confidential, may be disclosed to others pursuant to our <a href="https://www.mofo.com/about/privacy-policy.html">Privacy Policy</a>, may not receive a response, and do not create an attorney-client relationship with Morrison Foerster. If you are not already a client of Morrison Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

Feedback

mofo-logo-2022.svg

People

Capabilities

Resources

About

Culture

Offices

Careers

Stay Connected

In what can best be described as a tsunami of cybersecurity regulation, the Federal Acquisition Regulation (FAR) Council—consisting of the Department of Defense (DoD), General Services Administration (GSA), and National Aeronautics and Space Administration (NASA)—issued two proposed rules on October 2, 2023. 

We are Morrison Foerster — a global firm of exceptional credentials. Our clients include some of the largest financial institutions, investment banks, and Fortune 100, technology, and life sciences companies. Our lawyers are committed to achieving innovative and business-minded results for our clients, while preserving the differences that make us stronger.Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations. Prior results do not guarantee a similar outcome.

About Morrison Foerster

people-default-header-desktop.jpg

people-default-header-mobile.jpg

Default Meta Data

In what can best be described as a tsunami of cybersecurity regulation, the Federal Acquisition Regulation (FAR) Council—consisting of the Department of Defense (DoD), General Services Administration (GSA), and National Aeronautics and Space Administration (NASA)—issued two proposed rules on October 2, 2023. If implemented, the proposed rules would drastically alter existing cybersecurity and incident reporting obligations for Government Contractors. Even if these proposed rules are not fully implemented in their current form (as is likely), they are a harbinger of cybersecurity regulation to come. While the contours of the final rule remain uncertain, it is clear that gone are the days of agency-siloed cybersecurity requirements. Government-wide cybersecurity regulation has arrived.As drafted, the proposed rules will apply to all contractors that use information technology in the performance of a contract, including those that sell commercial and commercial off-the-shelf (COTS) products, and will flow down to subcontractors as well. Any company whose products or services are sold to any agency of the federal Government should understand the proposed rules, how they might impact the company’s operations, what compliance obligations they impose, and the potentially serious ramifications of non-compliance.Read the <a href="https://govcon.mofo.com/topics/the-far-council-s-proposed-cybersecurity-overhaul-lots-of-questions-but-only-some-answers" target="_self">full blog post</a>.

The FAR Council’s Proposed Cybersecurity Overhaul: Lots of Questions, but Only Some Answers

Sign Up

Tina is Co-chair of Morrison Foerster’s Government Contracts & Public Procurement practice. She represents a wide variety of government contractors including information technology, defense, biotechnology, and pharmaceutical companies, with a focus on general contract counseling and compliance, particularly concerning intellectual property, and cybersecurity matters and federal grant funding.Tina counsels contractors on compliance with federal, state and local acquisition and ethics regulations and with the evolving myriad of requirements pertaining to data security and cybersecurity. She has been involved with numerous internal investigations and compliance reviews, and with mandatory and voluntary disclosures to agencies, and litigation of False Claims Act matters.Tina routinely advises clients concerning:<ul><li>Prime-subcontractor relationships</li><li>Sources of supply and country of origin requirements</li><li>Price reductions and price reporting issues</li><li>Organizational conflicts of interest</li><li>Safeguarding of intellectual property and other proprietary interests</li><li>Licensing and data rights issues</li><li>Handling of classified materials and controlled unclassified information</li><li>Agency suspension and debarment proceedings</li></ul>She also assists clients with due diligence and other activities related to the acquisition of government contracting concerns, and with the drafting and negotiation of teaming agreements, subcontracts, licensing agreements, and cooperative research and development agreements. She also assists clients applying for federal grants (including SBIR and STTR agreements), and those who seek to obtain other transactional authority agreements, as well as those competing for state and local government work.Tina’s litigation experience includes government contracts claims litigation in federal courts and before boards of contract appeals, bid protests before the Government Accountability Office and the Court of Federal Claims, and complex disputes in federal courts, including civil fraud and False Claims Act litigation and reverse Freedom of Information Act litigation.Prior to joining Morrison Foerster, Tina worked at another large national firm and as a trial attorney in the Office of the General Counsel of the Navy, Navy Litigation Office.<h4>Representative Experience</h4><ul><li>Negotiation of largest CHIPS Act federal funding agreement between multinational semiconductor corporation and U.S. Department of Commerce.</li><li>Negotiated prime contract and major subcontracts related to the Department of Energy’s next generation supercomputer program, including extensive IP rights negotiations and negotiation of associated patent rights waivers.</li><li>Negotiated series of other transaction authority agreements with DARPA and associated subcontracts with more than a dozen research universities on behalf of a firm biotech client, including complex IP rights allocations and material transfer agreements.</li><li>Assist clients with FedRAMP authorization process and with development of license agreements for software products sold to federal, state and local government agencies.</li><li>Cyber incident response counseling to some of the largest companies and organizations impacted by security incidents.</li><li>Advises clients on Bayh-Dole reporting of inventions and IP strategies for contracts and grants.</li><li>Conducts due diligence for major government contract mergers and acquisitions.</li></ul>

Tina D. Reynolds

Partner

Sandeep Nandivada is a partner in the Litigation Department of Morrison & Foerster’s Washington, D.C. office. Sandeep’s practice focuses on civil litigation, complex internal investigations, and government contracts compliance, including matters related to cybersecurity and data breaches.Sandeep’s civil litigation practice focuses on bid protests, contract claims, subcontract disputes, and False Claims Act matters. He has litigated numerous protests before the Government Accountability Office, U.S. Court of Federal Claims, and the Small Business Administration Office of Hearings and Appeals across an array of subject matters—including some of the largest and most-high profile public procurements. Sandeep also has supported clients on significant claims, requests for equitable adjustments, and subcontract disputes involving a variety of performance or cost related issues.In addition, Sandeep has extensive experience conducting investigations with False Claims Act, Anti-Kickback Act, Procurement Integrity Act, and suspension and debarment implications. He has advised clients regarding procurement fraud, anti-corruption, procurement integrity, defective pricing, and cybersecurity, and has assisted clients with voluntary and mandatory disclosures under the FAR. Sandeep also was seconded to Northrop Grumman as Investigations Counsel.Sandeep also regularly advises clients on FAR and DFARS compliance issues, particularly issues related to cybersecurity, commercial item contracting, Buy American Act and Trade Agreements Act compliance, and organizational conflicts of interest. He also works with clients to evaluate and develop ethics and compliance programs.Sandeep has been named a “Rising Star” in 2020 by Law360 and National Law Journal, as well as DCA Live in 2018. He also has been named by Best Lawyers as “One to Watch.” He is active in the American Bar Association’s Public Contract Law Section, currently serving as Vice-Chair on the Cybersecurity, Privacy and Emerging Technology Committee.Sandeep graduated With Honors from the George Washington University Law School, where he was Editor-In-Chief of The George Washington Journal of Energy and Environmental Law, Vice President of Internal Competitions for the Moot Court Board, a legal writing fellow, and a member of the Alternative Disputes Resolution Board. He received his undergraduate degree from Cornell University with Distinction in all Subjects in History.Sandeep is admitted to practice in Virginia, the District of Columbia, and before the U.S. Court of Federal Claims and the U.S. District Court for the Eastern District of Virginia.<h4>Representative Experience</h4><h5>Litigation</h5><ul><li>Successfully protested award of $45B Department of Energy contract for nuclear waste cleanup at the Hanford site in Washington State on behalf of Hanford Tank Disposition Alliance, LLC.</li></ul><ul><li>Successfully protested award of $10B Joint Enterprise Defense Infrastructure (“JEDI”) Contract on behalf of Amazon Web Services, Inc. </li><li>Successfully resolved notice of potential debarment for Department of Defense contractor without any administrative penalties or sanctions.</li><li>Successfully defended award of LOGCAP V contract and associated task orders to Vectrus Systems Corporation.</li><li>Successfully protested $87.4 million contract award based on agency’s failure to identify organizational conflicts of interest for the awardee.</li><li>Successfully defended award of IDIQ contract for Transformation Twenty-One Total Technology Next Generation procurement.</li><li>Successfully resolved False Claims Act and Procurement Integrity Act allegations, without litigation, on behalf of government contractor.</li><li>Represented large defense contractor in response to agency show cause letter and in certified claim against agency, and successfully negotiated favorable settlement.</li></ul><h5>Investigations</h5><ul><li>Conducted internal investigations for multiple clients concerning data breaches, including counseling such clients on remediation and reporting obligations.</li><li>Conducted internal investigation regarding major defense contractor’s accounting and business systems practices, including representing client’s interests with the Defense Contract Audit Agency and advising client executives regarding proposed changes and remedial actions.</li><li>Conducted internal investigation concerning allegations of fraudulent billing, including submission of mandatory and supplemental disclosures to agency inspectors general.</li><li>Conducted internal investigation for major defense contractor responding to subpoena from federal agency seeking commercial cost data, including successfully negotiating the scope of the subpoena.</li><li>Conducted internal investigation regarding major defense contractor’s compliance with export control laws and regulations.</li><li>Conducted internal investigation for major defense contractor regarding contract performance issues.</li><li>Conducted internal investigation for major defense contractor concerning Procurement Integrity Act compliance.</li><li>Conducted Foreign Corrupt Practices Act investigation for multinational corporation.</li></ul><h5>Compliance</h5><ul><li>Conducted multiple multi-national government contracts compliance review and associated risk assessment for a Global Fortune 500 company, including recommending process improvements and policy changes.</li><li>Conducted multinational compliance review regarding conflicts of interest and anti-kickback policies.</li><li>Counseled major government contractor regarding cybersecurity disclosure obligations.</li><li>Counseled clients regarding compliance with applicable Pay-to-Play, Lobbying, and Revolving Door restrictions.</li></ul>

Sandeep Nandivada

Cloud Computing + As-a-Service Platforms

Technology

Government Contracts + Public Procurement