Susan B. Cassidy

January 2021

Recapture of Excess COVID-19 Payroll Tax Credits Addressed in New Regs As the legal, regulatory, and commercial implications of coronavirus COVID-19 continue to evolve, our lawyers and advisors are helping clients navigate the complex considerations that companies around the world are facing and develop plans and strategies in response. Reach out to our ...

January 22, 2021, Covington Alert

On January 19, 2021, the Department of Commerce (“Commerce”) published an Interim Final Rule to implement provisions of Executive Order 13873, “Executive Order on Securing the Information and Communications Technology and Services Supply Chain” (May 15, 2019) (the “ICTS Order”).  Unless suspended by the Biden Administration, the Rule will go into effect 60 days ...

January 11, 2021, Inside Government Contracts

As the recent SolarWinds Orion attack makes clear, cybersecurity will be a focus in the coming years for both governmental and non-governmental entities alike.  In the federal contracting community, it has long been predicted that the government’s increased cybersecurity requirements will eventually lead to a corresponding increase in False Claims Act (FCA) ...

October 27, 2020, Inside Government Contracts

As described in an earlier blog post, the Department of Defense (DoD) released an Interim Rule on September 29, 2020 that address DoD’s increased requirements for assessing whether contractors are compliant with the 110 security controls in National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 (NIST 800-171).[1]  Under this new ...

October 6, 2020, Inside Government Contracts

On September 29, 2020, the Department of Defense (DoD) released an interim rule that industry hoped would provide clear guidance with regard to DoD’s implementation of its Cybersecurity Maturity Model Certification (CMMC) framework.  The vast majority of the rule focuses on DoD’s increased requirements for confirming that contractors are currently in compliance ...

September 30, 2020, Inside Cybersecurity

Susan Cassidy is quoted in Inside Cybersecurity regarding the request from contractors for greater transparency on audit results from the DoD’s Cybersecurity Maturity Model Certification program. Ms. Cassidy says she is concerned about how the relationship will work between the prime and subcontractor. “All contractors will need to have a basic assessment [under ...

September 29, 2020, Law360

Susan Cassidy spoke with Law360 about protection of CUI forms in the Cybersecurity Maturity Model Certification. Ms. Cassidy says, “Bottom line, they still have never defined CUI in a way that's meaningful. It's the bedrock of the whole rule. And contractors really want to comply, I believe. They don't want their systems to be hacked. But the definition really ...

September 9, 2020, Covington Alert

On September 1, 2020, the Office of Management and Budget issued a highly-anticipated interim final rule (“Rule”) implementing the Federal Acquisition Supply Chain Security Act. Consistent with the U.S. Government's increasingly sharp focus on supply chain security, the Rule authorizes the Executive Branch to exclude indefinitely “covered articles” (products and ...

September 3, 2020, Inside Cybersecurity

Susan Cassidy is quoted in Inside Cybersecurity regarding new rules and procedures around the operations of the Federal Acquisition Security Council. Ms. Cassidy says, “The FASC has a tremendous amount of discretion on how they can collect information internally, through contractors and from nonfederal entities. It is unclear to me how broadly that information ...

August 26, 2020, Inside Government Contracts

On August 13, 2020, the Office of Management and Budget (OMB) released new revisions to its Guidance for Grants and Agreements set forth under 2 CFR (commonly referred to as the Uniform Guidance).  The Uniform Guidance governs the terms of federal funding issued by agencies, including grants, cooperative agreements, federal loans, and non-cash assistance ...

August 18, 2020, Inside Government Contracts

The Government Accountability Office (“GAO”) released a decision on Friday finding that the Department of Homeland Security (“DHS”) followed the wrong order of succession after Secretary Kirstjen Nielsen resigned in April 2019.  As a result, the Acting Secretaries who have served since then were invalidly selected.  In particular, GAO has questioned the ...

August 10, 2020, Inside Government Contracts

The National Institute for Standards and Technology released the draft of NIST Special Publication 800-172 (“NIST SP 800-172”) on July 6, 2020.  This draft special publication succeeds the prior draft NIST SP 800-171B that NIST published in June 2019, and operates as a supplement to the NIST SP 800-171 controls that federal contractors generally must...… ...

August 6, 2020, Inside Government Contracts

(This article was originally published in Law360 and has been modified for this blog.) Companies in a range of industries that contract with the U.S. Government—including aerospace, defense, healthcare, technology, and energy—are actively working to assess whether or not their information technology systems comply with significant new restrictions that will take ...

July 24, 2020, Inside Government Contracts

On July 10, 2020, the interim rule implementing Section 889(a)(1)(B) of the John S. McCain National Defense Authorization Act for Fiscal Year 2019 (Pub. L. No. 115-232) was released by the U.S. Government’s Federal Acquisition Regulatory Council. Section 889 prohibits the U.S. Government from buying (as of August 2019)—or contracting with an entity that uses...… ...

July 13, 2020, Covington Alert

On July 10, 2020, the U.S. Government's Federal Acquisition Regulatory Council (“FAR Council”) released a prepublication version of the interim rule governing Section 889(a)(1)(B) of the John S. McCain National Defense Authorization Act for Fiscal Year 2019 (Pub. L. No. 115-232), and added some clarifications to definitions that impact Section 889(a)(1)(A), ...

July 2, 2020, Inside Government Contracts

In recent years, both Congress and the Executive Branch have made it a key priority to mitigate risks across the industrial and innovation supply chains that provide hardware, software, and services to the U.S. government (“USG”).  Five of these initiatives are likely to result in new regulations in 2020, each of which could have a...… Continue Reading The post ...

June 9, 2020, Covington Alert

It has been publicly reported that discussions are underway within the Trump Administration for a coordinated interagency initiative to remove key industrial supply chain dependencies from overseas, especially China, and redouble efforts to secure such supply chains in the United States. While this initiative proceeds alongside ongoing efforts to secure supply ...

May 8, 2020, Inside Government Contracts

On May 5, 2020 the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency’s (“CISA”) Information and Communications Technology (“ICT”) Supply Chain Risk Management (“SCRM”) Task Force (the “Task Force”) released a six-step guide for organizations to start implementing organizational SCRM practices to improve their overall security ...

May 6, 2020, Covington Alert

On May 1, President Donald Trump signed an executive order on “Securing the United States Bulk-Power System” (the “Order”) that gives the Department of Energy new authorities to block or mitigate certain transactions involving bulk-power system electric equipment designed, developed, manufactured or supplied by a “foreign adversary” based on national security ...

April 22, 2020

WASHINGTON—Covington represented satellite provider Ligado Networks in its successful application for rights to deploy 5G services over its mid-band spectrum. On April 22, the full Federal Communications Commission (FCC) released a unanimous decision approving Ligado’s application, finding that it will advance economic and security interests nationwide. The ...

March 27, 2020, Federal Computer Week

Susan Cassidy spoke with Federal Computer Week about the concerns of defense contractors under the coronavirus relief package. According to Ms. Cassidy, equitable adjustments aren't necessarily a guarantee and require a mutual agreement between the contractor and government as well as quantifiable proof the costs have increased due to the changing environment ...

February 5, 2020, Law360

Susan Cassidy is quoted in Law360 regarding the DoD’s implementation of cybersecurity requirements for defense contractors. Ms. Cassidy says that questions about the process, such as who will audit the thousands of contractors that need to be certified for cybersecurity compliance, how they will be audited and what options they will have if they disagree with an ...

January 27, 2020, ACI's 7th Annual Advanced Forum on False Claims and Qui Tam Enforcement Conference

January 2020, Government Contracting Law Report

December 2019, Government Contracting Law Report

November 27, 2019, Covington Alert

The Department of Commerce (“the Department”) has issued a proposed rule implementing the May 15, 2019 Executive Order entitled “Securing the Information and Communications Technology and Services Supply Chain,” which we previously analyzed here. Once finalized and effective, the regulations will govern the process and procedures that the Secretary of Commerce ...

November 6, 2019, Covington Alert

On November 5, 2019 the Department of Justice (DOJ) announced the launch of the “Procurement Collusion Strike Force” (PCSF). The creation of the PCSF marks a significant development in the government procurement enforcement landscape. Creation of the PCSF prioritizes the DOJ’s focus on government procurement offenses. As part of that effort, DOJ has launched a ...

October 24, 2019, Law360

Susan Cassidy spoke with Law360 about the Department of Defense’s goal for its Cybersecurity Maturity Model Certification (CMMC) and its impact on join bid contractors.   Ms. Cassidy says such teaming arrangements are already complicated and can take years to put together for big defense procurements. Although the DOD has said cybersecurity compliance will be ...

October 18, 2019, National Defense

October 2019, Women, Influence & Power in Law Conference, Washington DC

September 11, 2019, Gov Info Security

Susan Cassidy, Samantha Clark, Ryan Burnette, and Ian Brekke are mentioned in Gov Info Security regarding their blog post analyzing the CMMC draft. "The guidance offers no insight into how DOD will determine the CMMC certification level required for each contract solicitation or whether it intends to standardize a process for making such determinations across ...

June 20, 2019, The Coalition for Government Procurement

June 18, 2019

WASHINGTON—Covington is representing Peraton in its recently announced deal to acquire Solers, Inc., a leading provider of software development and systems integration for space situational awareness, satellite ground systems and operations, cybersecurity engineering, and enterprise cloud-based solutions. Covington is handling government contracts, national ...

June 14, 2019, Government Contracting Law Report

May 16, 2019, National Defense

May 16, 2019, Covington Alert

We are writing to provide an update on two important developments in U.S. national security-based regulation of trade: (1) a new, potentially expansive Executive Order on information and communications technology supply into the U.S. market, and (2) the Department of Commerce’s action to add Huawei to the Entity List.

May 2019, Government Contracting Law Report

2019, American Bar Association

Our cross-disciplinary Internet of Things initiative contributed to the ABA's first book on IoT, The Internet of Things: Legal Issues, Policy, & Practical Strategies.   Laura Kim and Jennifer Johnson authored the chapter “U.S. Regulatory Framework for IoT,” with contributions from Sarah Wilson (product safety); Wade Ackerman, Elizabeth Guo, Christopher Hanson, ...

April 2, 2019, National Defense

March 19, 2019, Law360

February 4, 2019, Federal News Network

Susan Cassidy is quoted in Federal News Network regarding the Department of Defense’s tightening of cybersecurity enforcement regulations on contractors.   Ms. Cassidy says, “DoD wants to get everyone to a certain cybersecurity level. Now they are tightening up and they are going to make it a performance and award differentiator.” She said before an award, ...

January-February 2019, The Journal of Robotics, Artificial Intelligence & Law

October 15, 2018, Law360

October 2018, Contractor's Guide to International Procurement, American Bar Association

September 12, 2018, Law360

August 30, 2018, Covington Alert

How well do you actually know your supply chain—from the materials you acquire to the software you include in your products or services? If you have not answered this question recently, you should consider adding it to your “to do” list. Not only does the U. S. Government want to know, it is increasingly imposing new compliance obligations on its contractors.

June 28, 2018, National Defense

June 18, 2018, Virginia State Bar Annual Meeting

May 15, 2018, Global Data Review

Susan Cassidy is quoted in a Global Data Review article regarding the focus on privacy by design by the International Organization for Standardization and the U.S. National Institute of Standards and Technology. Cassidy says that the anecdotal evidence she has from speaking to her private sector clients is that they are increasingly considering NIST guidelines, ...

May 1, 2018

WASHINGTON—Covington advised Elbit Systems Ltd. in its $120 million acquisition of the assets and operations of the privately owned U.S. company, Universal Avionics Systems. Elbit Systems is an international high technology company engaged in a wide range of defense, homeland security, and commercial programs throughout the world. Universal Avionics is a ...

March 26, 2018, Thomson Reuters' Westlaw Journal Government Contracts

March 19, 2018, Covington Advisory

Cyberattacks targeting defense contractors illustrate the need for cybersecurity, for thoughtful planning—and for insurance when security and planning prove insufficient. Understanding your insurance policies before things go wrong can help ensure financial protection when they do.

January 25, 2018

January 22, 2018, E-Commerce Times

Susan Cassidy is quoted in an E-Commerce Times article regarding efforts to create an online marketplace for government purchasers. "One model that was discussed would require a portal provider to contract with GSA to provide an online interface. Under this approach, suppliers would then sign up to use the portal, potentially via a contract with the portal ...

January 4, 2018, National Defense

January 2, 2018, Law360

January 2, 2018, Politico

Susan Cassidy is quoted in Politico Pro's "Morning Cybersecurity" newsletter regarding the December 31st deadline for defense contractors to meet minimum cybersecurity requirements for the systems they operate for the Pentagon. According to Cassidy, the cybersecurity rule presents “a problem for DoD because there’s a lot of subjectivity in what is ‘adequate ...

December 8, 2017, ABA Webinar

December 2017, Pratt's Government Contracting Law Report

November 24, 2017, Los Angeles Business Journal

Susan Cassidy is quoted in a Los Angeles Business Journal article regarding the difficulties that some defense contractors in Southern California were facing trying to meet the Department of Defense deadline of December 31, 2017 for implementing the cybersecurity controls in NIST Special Publication 800-171. Cassidy notes that the definition of the information ...

November 2017, Pratt's Government Contracting Law Report

October 31, 2017, Bloomberg Government

Susan Cassidy is quoted in a Bloomberg Government article regarding contractors' efforts to comply with new cybersecurity standards. According to Cassidy, the mandate that contractors develop cybersecurity plans—the most recent requirement added to the NIST list—is crucial for contractors. Contractors must “develop, document, and periodically update system ...

October 2017, Pratt's Government Contracting Law Report

August 1, 2017, Law360

July 2, 2017, San Antonio Express-News

Susan Cassidy is quoted in a San Antonio Express-News article regarding new cybersecurity requirements for contractors. According to Cassidy, "Essentially, the DOD wants its contractors to protect its information, because the DOD is a huge target, and its contractors are also a target." Commenting on the fact that over the years, contractors have been working ...

July 2017, Pratt's Government Contracting Law Report

June 2017, ACI 8th Advanced Forum on DCAA & DCMA Cost, Pricing, Compliance & Audits

March 2017, National Defense

March 2017, Pratt's Government Contracting Law Report

February 28, 2017

WASHINGTON—Covington represented semiconductor manufacturer Intersil Corporation in its $3.2 billion sale to Japan’s Renesas Electronics Corporation. The firm advised Intersil on aspects of the transaction involving Committee on Foreign Investment in the United States (CFIUS), Foreign Ownership, Control, or Influence (FOCI), trade controls, and government ...

January 17, 2017, Federal Contracts Report

Susan Cassidy is quoted in a Federal Contracts Report article regarding the fate of cybersecurity improvements made by the DoD under President Trump. According to Cassidy, “I would expect those to continue forward because I don't see a political will to say, ‘No you shouldn't protect this.’”  The nomination of former Sen. Dan Coats (R-Ind.) to serve as director ...

January 2017, Pratt’s Government Contracting Law Report

November 2016, Government Contracting Law Report

October 25, 2016, Inside Government Contracts

On October 21, 2016, the Department of Defense (DoD) issued its long-awaited Final Rule—effective immediately—imposing safeguarding and cyber incident reporting obligations on defense contractors whose information systems process, store, or transmit covered defense information (CDI). The Final Rule...

October 3, 2016, Federal Contracts Report

Susan Cassidy is quoted in a Federal Contracts Report article regarding the Defense Department’s updated cyber incident reporting rule. According to Cassidy, the rule succeeded in clarifying some industry concerns, but did not address them all. “They didn't take an opportunity to clarify everything you might have hoped they would.” For example, when asked ...

September 19, 2016, Covington Alert

On September 14, 2016, the National Archives and Record Administration (NARA) issued the “Controlled Unclassified Information Final Rule” (Final Rule), effective November 13, 2016, establishing consistent practices and procedures for safeguarding, disseminating, controlling, destroying, and marking Controlled Unclassified Information (CUI) across Executive ...

September 14, 2016, 2016 Covington Government Contracts Briefing: Solving Problems, Securing Opportunities

August 19, 2016, Inside Defense

Susan Cassidy is quoted in an Inside Defense article regarding the DOD’s proposed rule change to implement sections of the National Defense Authorization Acts for Fiscal Years 2013 and 2016 relating to commercial item acquisitions. According to Cassidy, "They were going to take out the 'of a type' commercial item, and that's been a big deal with DOD for a long ...

June 17, 2016, Covington Alert

In Universal Health Services Inc. v. U.S. ex rel. Escobar, No. 15-7 (Slip. Op. June 16, 2016), a unanimous Supreme Court affirmed the viability of the “implied false certification” theory of False Claims Act liability, at least in certain circumstances. This portion of the ruling was not unexpected given the overwhelming acceptance of implied certification among ...

May 31, 2016, Inside Cybersecurity

Susan Cassidy participated in a panel discussion at the annual cybersecurity conference at Georgetown University Law Center and is quoted in this Inside Cybersecurity article regarding the limited scope of liability protections under the new cyber info-sharing law. According to Cassidy, "Anything you create could be used in litigation against you," in referring ...

May 25, 2016, Panelist Speaker, Georgetown University 4th Annual Cybersecurity Law Institute

May 2016, National Defense Magazine

January 2016, National Defense

November 3, 2015, BNA Government Contracts

Susan Cassidy was quoted in this article.

November 2, 2015, Covington Alert

August 27, 2015, Inside Cybersecurity

Susan Cassidy was quoted in this article.

August 27, 2015, Covington Alert

August 13, 2015, Inside Cybersecurity

Susan Cassidy was quoted in this article.

August 12, 2015, Covington Alert

June 17, 2015, Bloomberg BNA Federal Contracts Report

June 9, 2015, Inside Cybersecurity

Covington's David Fagan and Susan Cassidy have authored this article for Inside Cybersecurity. 

June 9, 2015, InsideCounsel

December 11, 2014, American Bar Association

September 17, 2014, Law360

August 25, 2014, Law360

Susan Cassidy was quoted in this article.

July 22, 2014, Law360

July 22, 2014, Law360

Susan Cassidy, Scott Freling and Kayleigh Scalzo have co-authored this article about the U.S. Department of Defense issuing a proposed rule to amend the Defense Federal Acquisition Regulation Supplement (“DFARS”) in order to improve the efficiency and effectiveness of auditing contractors’ accounting systems, estimating systems, and material management and ...

July 18, 2014, Covington E-Alert

July 13, 2014, The Washington Post

Covington partner Susan Cassidy is quoted regarding a recent court decision by the Fourth Circuit that is set to change how much contractors who mislead the government face in potential penalties.  "That potential windfall acts as a strong incentive for people to file suits on behalf of the government, said Susan Cassidy, a partner at law firm Covington & ...

July 7, 2014, National Defense Magazine

Susan Cassidy and Mike Wagner authored this article on the increase of "false claims" suits.  Under a recent court decision by the Fourth Circuit, a federal government contractor may suddenly find itself facing potentially massive liability based solely on the number of invoices submitted in previous years, even if every one of those invoices was entirely ...

July 5, 2014, National Defense Magazine

July 3, 2014, Law360

July 3, 2014, Law360

Susan Cassidy and Mike Wagner write on the False Claims Act in this article for Law360:  "For the past four years, FCA enforcement has focused most heavily on the health care industry, recovering more than $2 billion a year in cases involving health care fraud. This article discusses a recent FCA ruling by the Fourth Circuit that, if allowed to stand, could ...

May 9, 2014, Covington E-Alert

April 28, 2014, Bloomberg BNA

Covington partner Susan Cassidy was interviewed for Bloomberg BNA regarding the General Services Administration's draft plan to manage cybersecurity risks in the federal acquisition process. The article states: “When you read the actual proposal from GSA, it's hard to figure out what they are going to do,” Covington & Burling LLP Partner Susan Cassidy said. ...

April 2014, West Briefing Papers

February 13, 2014, Covington E-Alert

January 29, 2014, Covington E-Alert

January 21, 2014, Covington E-Alert

January 9, 2014, Covington E-Alert

December 13, 2013, Panelist, American Bar Association, Section of Public Contract Law, Annual Fall Meeting

November 21, 2013, Covington E-Alert

May 10, 2013, Covington E-Alert

April 8, 2013, Covington E-Alert

April 2013, The Procurement Lawyer

February 12, 2013, Covington E-Alert

August 29, 2012, Covington E-Alert

July 31, 2012, Covington E-Alert

July 2, 2012

WASHINGTON, DC, July 2, 2012 — Covington & Burling is bolstering its government contracts practice by adding Susan Cassidy as a partner in its Washington, D.C. office. This marks Covington’s second high-profile addition to its government contracts practice in recent months and underscores the firm’s strong commitment to expand in this area of law. Robert Nichols ...

1997, Briefing Papers, Second Series, West Group

Westlaw