Jacob Harrison
Overview
Jacob Harrison helps his clients navigate both domestic and international legal challenges.
Jake advises U.S. government contractors on internal investigations and state and federal regulatory compliance. His compliance practice focuses on counseling clients operating at the intersection of government contracts and cybersecurity, including for cybersecurity compliance reviews, risk assessments, and data breaches.
Career & Education
- University of Georgia, A.B., international affairs, 2016
- Emory University School of Law, J.D., with honors, 2021
- District of Columbia
- Virginia
Jacob's Insights
Client Alert | 8 min read | 01.17.25
Cyber For All: Proposed Rule Introduces Government-Wide CUI Cybersecurity Requirements
On January 15, 2025, the FAR Council released a proposed rule (FAR CUI Rule) that would amend the FAR to implement federal government-wide Controlled Unclassified Information (CUI) cybersecurity, training, and incident reporting requirements for government contractors and subcontractors. The rule’s key cybersecurity requirements closely mirror the Department of Defense’s Cyber Maturity Model Certification (CMMC) program (for example, compliance with National Institute of Standards and Technology Special Publication 800-171, Revision 2), but broaden the scope to include contractors and subcontractors working across all federal agencies. The Rule is intended to standardize the handling of CUI by federal government contractors and subcontractors in accordance with Executive Order 13556, including by:
Client Alert | 2 min read | 01.14.25
Client Alert | 22 min read | 01.07.25
The FY 2025 National Defense Authorization Act: Key Provisions Government Contractors Should Know
Client Alert | 3 min read | 11.11.24
Allegations of a Litany of Lyin’: Penn State Settles Claims of Cybersecurity Noncompliance
Insights
The Impact Of The Cybersecurity Maturity Model Certification On The Defense Industrial Base
|05.01.24
Contract Magazine
Spy Games: Biden Administration Issues Executive Order Restricting Federal Use Of Commercial Spyware
|06.15.23
Government Contracting Law Report
"Cybersecurity Maturity Model Certification (CMMC): Proposed Rule Released!", National Contract Management Association Webinar
|01.30.24
Jacob's Insights
Client Alert | 8 min read | 01.17.25
Cyber For All: Proposed Rule Introduces Government-Wide CUI Cybersecurity Requirements
On January 15, 2025, the FAR Council released a proposed rule (FAR CUI Rule) that would amend the FAR to implement federal government-wide Controlled Unclassified Information (CUI) cybersecurity, training, and incident reporting requirements for government contractors and subcontractors. The rule’s key cybersecurity requirements closely mirror the Department of Defense’s Cyber Maturity Model Certification (CMMC) program (for example, compliance with National Institute of Standards and Technology Special Publication 800-171, Revision 2), but broaden the scope to include contractors and subcontractors working across all federal agencies. The Rule is intended to standardize the handling of CUI by federal government contractors and subcontractors in accordance with Executive Order 13556, including by:
Client Alert | 2 min read | 01.14.25
Client Alert | 22 min read | 01.07.25
The FY 2025 National Defense Authorization Act: Key Provisions Government Contractors Should Know
Client Alert | 3 min read | 11.11.24
Allegations of a Litany of Lyin’: Penn State Settles Claims of Cybersecurity Noncompliance
