Seattle Washington Building Expert Directory

SEC Recommendations to Protect Against Cybersecurity Threats

March 09, 2020 — Shaia Araghi and Jeffrey Dennis – Newmeyer Dillion
What Happened? The Securities and Exchange Commission's Office of Compliance Inspections and Examinations ("OCIE") issued a detailed report on January 27, 2020 regarding various ways for organizations to safeguard data and protect against security and data breaches. Cyber threat actors are now invading data in a more sophisticated manner than ever before, and implementation of the SEC's recommended practices are essential in order to protect from outside vulnerabilities. What is at Risk? If market participants fail to implement these recommended policies, they will become more vulnerable to external attacks and data breaches. This can weaken an organization or firm if all employees are not properly trained and informed of the increasing dangers of cybersecurity breaches. What Can You Do to Protect Yourself from a Cybersecurity Threat? 1. Governance and Risk Management. Senior leaders should make efforts to improve the cyber safety at their organization. Some of these efforts may include:

Devote attention to overseeing the organization's cybersecurity and resilience programs;
Develop a risk assessment process to identify and mitigate cybersecurity risks to the organization;
Adopt and implement policies and procedures regarding these risks;
Promptly respond and adapt to changes by updating policies and procedures when necessary; and
Establish communication policies and procedures to provide timely information to customers, employees, and others when needed.

2. Access Rights and Controls. Implement updated controls to determine appropriate users for organization systems, limit access as appropriate to authorized users (including the set-up of multi-factor authentication) and monitor user access. 3. Data Loss Prevention. OCIE has recommended various important data loss prevention measures for organizations:

Establish a vulnerability management program;
Implement capabilities that can monitor network traffic and detect threats on endpoints;
Establish a patch management program covering all software and hardware;
Maintain an inventory of hardware and software assets;
Encrypt data and implement network segmentation;
Create an insider threat program to monitor any suspicious behaviors; and
Secure legacy systems and equipment through disposal of sensitive information from hardware and software and by reassessing vulnerability and risk assessments.

4. Mobile Security. Establish policies and procedures for mobile device use, manage use of mobile devices through a mobile device management application, implement security measures for internal and external users, and train employees on mobile device policies and effective practices. 5. Incident Response and Resiliency. Detect and disclose material information regarding incidents in a timely manner and assess appropriateness of corrective actions taken in response to incidents. Organizations should develop a plan if an incident occurs, address applicable reporting requirements, assign staff to execute specific areas of the plan, and test and assess the plan. In the event that a data breach occurs, an organization should improve its resiliency by maintaining an inventory of core business services and prioritizing business operations based on an assessment of risks. 6. Vendor Management. Establish a vendor management program to ensure that vendors meet your organization's security requirements. Organizations should aim to understand all contract terms with vendors to ensure that all parties are in agreement regarding risk and security. Organizations should also monitor third-party vendors and ensure that the vendor continues to meet the organization's security requirements. 7. Training and Awareness. Train staff to implement cybersecurity policies of the organization. Organizations should provide cybersecurity and resiliency training and re-evaluate the effectiveness of training procedures. A Final Reminder for Organizations Organizations should strive to implement as many of the SEC's recommended protection measures as possible. Ensuring that senior members of an organization are leading the initiative in increased awareness about cybersecurity threats through training of employees will lead to greater cyber safety for the overall organization. Although prevention of all breaches cannot be guaranteed, developing data loss prevention plans to keep the organization and its core businesses safe from attack will benefit the entire organization. How We Can Help If you feel that your business falls below the SEC's recommended security measures, our firm can assist with compliance. Contact us for a free initial consultation to determine a reasonable and practical way for your business to become compliant with these guidelines. Shaia Araghi is an associate in the firm's Privacy & Data Security, and supports the team in advising clients on cyber-related matters, including compliance and prevention that can protect their day-to-day operations. For more information on how Shaia can help, contact her at shaia.araghi@ndlf.com. Jeff Dennis (CIPP/US) is the Head of the firm's Privacy & Data Security practice. Jeff works with the firm's clients on cyber-related issues, including contractual and insurance opportunities to lessen their risk. For more information on how Jeff can help, contact him at jeff.dennis@ndlf.com. About Newmeyer Dillion For 35 years, Newmeyer Dillion has delivered creative and outstanding legal solutions and trial results that achieve client objectives in diverse industries. With over 70 attorneys working as a cohesive team to represent clients in all aspects of business, employment, real estate, environmental/land use, privacy & data security and insurance law, Newmeyer Dillion delivers holistic and integrated legal services tailored to propel each client's success and bottom line. Headquartered in Newport Beach, California, with offices in Walnut Creek, California and Las Vegas, Nevada, Newmeyer Dillion attorneys are recognized by The Best Lawyers in America©, and Super Lawyers as top tier and some of the best lawyers in California and Nevada, and have been given Martindale-Hubbell Peer Review's AV Preeminent® highest rating. For additional information, call 949.854.7000 or visit www.newmeyerdillion.com. Read the court decision
Read the full story...
Reprinted courtesy of

Construction Litigation Roundup: “A Close Call?”

August 05, 2024 — Daniel Lund III - Lexology
Not really, said a Florida state appellate court when a public construction project owner sued a defaulted general contractor after recovering from the general contractor’s surety. The general contractor, Close Construction, entered into a contract for a lift station rehabilitation construction project with the City of Riviera Beach in Florida. During the course of the work the public owner terminated the contract, whereupon the GC and the owner brought claims against each other in court. A jury ultimately held against the general contractor and in favor of the public owner in the amount of approximately $1.9 million. The general contractor appealed. On appeal, the general contractor noted that the public works surety which it was required by the contract to obtain for the project had hired another company to complete the work when the general contractor was terminated and had otherwise “settled with the District under its bond for $1,000,000.” Based on that settlement, the general contractor had moved, unsuccessfully, in the trial court for a post-trial setoff because the “settlement covered the same damages that the jury assessed” against the GC, and because the surety was “jointly and severally liable” with the GC – pursuant to the terms of the bond – for those damages. In essence, the general contractor sought to avoid having the public owner “obtain a double recovery.” Read the court decision
Read the full story...
Reprinted courtesy of Daniel Lund III, Phelps
Mr. Lund may be contacted at daniel.lund@phelps.com

Coverage Denied for Insured's Defective Product

October 15, 2014 — Tred R. Eyerly – Insurance Law Hawaii
The court found there was no coverage obligations for the insured's defective product. Titanium Indus., Inc. v. Federal. Ins. Co., 2014 WL 4428324 (N.J. Super. Ct. App. Div. Sept. 10, 2014). The insured, Titanium Industries, supplied titanium bar materials to Biomet Manufacturing Corporation. Biomet manufactured orthopedic implants and devises. The titanium was used to manufacture screws to incorporate into Biomet's products. Biomet notified the insured of a potential defect in some of the titanium material, described as "alloy segregation," i.e., the failure of alloys in a metal to completely melt, causing the alloy to separate and undermine the strength of the finished product. The insured and Biomet negotiated a settlement, which included lost profits and the cost of returning the titanium. Read the court decision
Read the full story...
Reprinted courtesy of Tred R. Eyerly, Insurance Law Hawaii
Mr. Eyerly may be contacted at te@hawaiilawyer.com

Tech Focus: Water Tech Getting Smarter

June 05, 2023 — Pam McFarland - Engineering News-Record
In early December 2021, the Denver International Airport made headlines across the U.S. after a hot water pipe broke a month before a major terminal expansion project was expected to complete. The scalding water spilled on floors and across the airport concourse, causing $50 million in damage and a nine-month delay to the project. Reprinted courtesy of Pam McFarland, Engineering News-Record Ms. McFarland may be contacted at mcfarlandp@enr.com Read the full story... Read the court decision
Read the full story...
Reprinted courtesy of

Contractual Indemnification Limitation on Florida Public Projects

July 28, 2016 — David Adelstein – Florida Construction Legal Updates
Construction contract indemnification provisions are governed under Florida Statute s. 725.06. This is a very important statute to know if you are drafting indemnification provisions for any type of construction contract. (There is also Florida Statute s. 725.08 that discusses indemnification provisions applicable to design professionals that is also worth knowing.) Read the court decision
Read the full story...
Reprinted courtesy of David Adelstein, Kirwin Norris
Mr. Adelstein may be contacted at dma@kirwinnorris.com

Australia Warns of Multi-Billion Dollar Climate Disaster Costs

October 09, 2023 — Ben Westcott - Bloomberg
Australian Treasurer Jim Chalmers highlighted the soaring cost of disaster management in his nation ahead of a potentially disastrous wildfire season in the coming summer, fueled by El Nino. Government funding for disaster recovery has blown out by 433% over the past three years, Chalmers said in excerpts of a speech to be delivered Tuesday in the northern city of Rockhampton. The costs stood at A$2.5 billion ($1.6 billion) in the year ended June 30. “The pressure of a changing climate and more frequent natural disasters is constant, cascading, and cumulative,” Chalmers said. Read the court decision
Read the full story...
Reprinted courtesy of Ben Westcott, Bloomberg

Carolinas Storm Damage Tally Impeded by Lingering Floods

October 09, 2018 — Jim Parsons & Tom Sawyer - Engineering News-Record
As October rolls in, slow-moving flood crests and sluggish drainage persisting weeks after the passage of Hurricane Florence are leaving large eastern areas in the affected states too inundated for accurate damage assessments. The extent of damage is still largely uncalculated. In some cases, it’s believed to be worsening. Reprinted courtesy of Jim Parsons, Engineering News-Record and Tom Sawyer, Engineering News-Record Mr. Parsons may be contacted at sawyert@enr.com Read the court decision
Read the full story...
Reprinted courtesy of

New FAR Rule Mandates the Use of PLAs on Large Construction Projects

October 10, 2022 — Reggie Jones - ConsensusDocs
The Federal Acquisition Regulatory Council recently published a proposed ruled that, once implemented, will require the use of project labor agreements (PLAs) on federal construction projects with a contract value of $35 million or greater. The proposed rule revokes President Obama’s Executive Order 13502 and implements an Executive Order 14063 (E.O. 14063) issued on February 9, 2022. E.O. 14063 addresses the use of PLAs in the government contracts. Under the current Federal Acquisition Regulation (FAR), the use of PLAs on “large-scale construction projects” is discretionary. The new rule proposed by the Department of Defense (DOD), General Services Administration (GSA), and National Aeronautics and Space Administration (NASA) revises the FAR contract clauses making the use of PLAs mandatory. Under the proposed rule, contractors performing “large-scale construction projects” will be required to “negotiate or become a party to a [PLA] with one or more appropriate labor organizations.” FAR 52.222-33. A PLA is in essence a collective bargaining agreement between a local trade union and contractor that governs employment terms, including wages and benefits, for union and non-union workers. Although the PLA mandate only applies to large-scale construction projects with the contract value of $35 million and more, under the proposed rule, agencies have the option to include the PLA requirement for construction projects that are under the $35 million threshold. The proposed rule also sets out a flow-down requirement, which means that subcontractors working on a large-scale project must likewise be familiar with and comply with terms of the PLA negotiated by a prime contractor. Read the court decision
Read the full story...
Reprinted courtesy of Reggie Jones, Fox Rothschild LLP (ConsensusDocs)
Mr. Jones may be contacted at rjones@foxrothschild.com

SEATTLE WASHINGTON BUILDING EXPERT DIRECTORY AND CAPABILITIES