Tag: Department Of Homeland Security

News Alert: USCIS Fees Will Increase Starting Apr. 1, 2024

The U.S. Citizenship and Immigration Services (USCIS) and Department of Homeland Security (DHS) released their final rule on Jan. 31, 2024, adjusting the price for certain immigration and naturalization fees. Every two years, the USCIS conducts a fee review. In the most recent biennial review, they determined that the “fees do not recover the full cost of providing adjudication and naturalization services.” In tandem with USCIS, DHS adjusted their fee schedule to also recover costs and maintain their services.

The fee increase will be established on all benefit requests postmarked Apr. 1, 2024, and after.

What Are the Fees Used for and Are There Exceptions?

Benefit request fees make up the primary source of funding for USCIS services. The fees fund benefit requests for “refuges, asylum [seekers], and certain other applicants and petitioners.” Most of the fees adjusted in 2024 have not been increased since 2016, so they now reflect inflation costs from the past 8 years.

The USCIS hopes this increased revenue will help slash processing times and address application backlogs that were affected by increased application volume and the COVID-19 pandemic. However, achieving this will depend on staffing and continued volume of applications.

Acknowledging that some applicants will not be financially able to meet fee requirements, the USCIS determined that an applicant with “an annual gross household income at or below 125 percent of the Federal Poverty Guidelines” meets the requirements for a fee waiver. These household income numbers will continue to update along with the U.S. Department of Health and Human Services’ Federal Register. Applicants seeking a waiver will need to provide documentation of their income including:

  • Form 1040,
  • IRS Form W-2,
  • Pay stubs, or
  • Support/benefits statements or affidavits from organizations sending financial aid.

A USCIS Deputy Director has the authority to grant a fee exemption required by 8 CFR 106.2. According to USCIS Fee Schedule, to be granted a waiver, the Deputy Director “must determine that such action would be in the public interest, the action is consistent with the applicable law, and the exemption is related to one of the following:”

  • Asylees;
  • Refugees;
  • National security;
  • Emergencies or major disasters declared in accordance with 44 CFR part 206, subpart B;
  • An agreement between the U.S. government and another nation or nations; or
  • USCIS error.

USCIS Fee Increases

Please note that the above chart does not reflect all fee increases. For the full list of adjusted fees, please visit USCIS’s Filing Fee FAQs page with the entire breakdown.

Fee increases range from anywhere between $10 to ~$30,000 and affect individual, entrepreneurial, and employment related forms. For reference, the I-956F Application for Approval of an Investment in a Commercial Enterprise is increasing $29,900 while the USCIS Immigration Fee is increasing only $15. For some forms, especially those that consider biometric services, the fees are decreasing or are completely free.

For applicants who are still in the visa process and worried about the fee increase, getting in all materials PRIOR to Apr. 1, 2024, may ensure that the current fee is charged.

©2024 Norris McLaughlin P.A., All Rights Reserved
For more news on USCIS Fee Increases, visit the NLR Immigration section.

DHS and DOJ Announce Joint Guidance on Electronic Form I-9 Processing

The Department of Homeland Security (DHS) and Department of Justice (DOJ) recently issued a fact sheet to guide employers on electronically completing, modifying, or retaining Form I-9. The joint guidance applies to employers using private sector commercial or proprietary I-9 software programs to complete Form I-9 or participate in E-Verify.

Requirements for Employers Using Electronic Form I-9 Software Programs

DHS permits completing Form I-9 electronically provided that the I-9 software complies with I-9 and E-Verify requirements. The DHS/DOJ fact sheet confirms that employers, rather than the software vendor, are responsible for ensuring compliance with these requirements. It provides the following key requirements and states that an I-9 software must:

  • Provide employees with access to the current acceptable version of Form I-9, I-9 instructions, and list of acceptable documents.
  • Allow employees to leave optional fields blank and accommodate employees with only one name.
  • Meet integrity, accuracy, security, and reliability requirements designed to prevent and detect unauthorized or accidental creation, alteration, or deletion of stored I-9s.
  • Comply with standards for electronic I-9 signatures.
  • Comply with general requirements applicable to I-9 documentation, retention, and audit trail requirements.
  • Ensure the electronic generation or storage of Form I-9 is inspected and monitored periodically.
  • Ensure the I-9 forms and all information fields on electronically retained I-9s are fully and readily accessible in the event of a government audit.

Specifically related to modifying and retaining Forms I-9 electronically, the fact sheet states that I-9 software must provide employees, employers, and preparers/ translators the option to make and record corrections to a previously completed I-9 form. Further, the software must uniquely identify each person who accesses, corrects, or changes an I-9 form. Modifications to stored I-9 forms must be properly annotated to include the date of access, the identity of the person making the change, and the nature of the change. Commercial or proprietary I-9 software may lack the functionality to comply with these guidelines regarding providing an audit trail and permitting corrections to completed I-9 records, so these are specific considerations employers should be aware of when assessing potential I-9 software for compliance.

Requirements for Employers Using Electronic Form I-9 Software Programs to Create E-Verify Cases

The DHS/DOJ fact sheet notes that employers who participate in E-Verify and access E-Verify through a software must:

  • Confirm that the software’s functionality allows employers to follow the requirements detailed in the E-Verify Memorandum of Understanding and DHS’s E-Verify guidance.
  • Refrain from creating new E-Verify cases due to corrections made to the previously completed I-9 if the employee received a prior “employment authorized” result. Depending on functionality, commercial or proprietary I-9 software may require completing a new I-9 instead of allowing a correction to the previously completed form.
  • Be able to delay creating E-Verify cases as instructed by E-Verify rules. For example, E-Verify instructs employers to postpone creating E-Verify cases for employees who have not yet received their Social Security numbers and for employees who show certain acceptable receipts for the Form I-9. The software’s functionality should permit employers to delay creating the E-Verify case in these scenarios.

Training for Employer Personnel Administering I-9 Software on Behalf of the Employer

The DHS/DOJ fact sheet also reminds employers to properly train personnel completing electronic Forms I-9 on the employer’s behalf. Key points include the following:

  • Employer personnel should be familiar with the employer’s procedures to complete Form I-9 or create an E-Verify case outside of the Form I-9 software program if, for example, the person completing the I-9 cannot use the I-9 software program or there is a software outage.
  • Employers should not pre-populate fields on electronic I-9 forms with employee information. An I-9 software may be part of the employer’s other HR-related systems and the system may initiate the I-9 verification process through impermissibility pre-populating the employee’s information on the electronic I-9.
  • The employer must not use auto-correct, use predictive text, or post-date an I-9 when completing an I-9 with an I-9 software.
  • The employer should not complete the I-9 on an employee’s behalf and must not change or update the employee’s citizenship or immigration status attestation. For corrections to Section 1, the process is the same as when completing a paper I-9 and changes or corrections to Section 1 must be made by the employee. The I-9 software must have the functionality to allow the employee to make corrections to a previously completed I-9 form.
  • The employer must not remove or add fields to Form I-9. An I-9 software that adds additional questions seeking information that is not requested by the I-9 form may violate this guidance.
  • Employers must permit preparers or translators to assist an employee in completing an electronic I-9.
  • Employers must permit employees to present any valid and acceptable documentation to establish identity and employment authorization, including acceptable receipts, and should not suggest specific documents for this purpose. Thus, an I-9 software should not notify the employer to, for example, request documentation to reverify an employee’s identity document or reverify a permanent resident card.
  • The fact sheet reminds employers to not impose unnecessary obstacles that make it more challenging for employees to start work or get paid, such as by requiring a Social Security number to onboard or by not paying an employee who can complete the Form I-9 but is still waiting for a Social Security number.

Given the significant penalties for non-compliance, employers should exercise thorough due diligence when evaluating I-9 software, considering compliance with DHS regulations alongside factors like cost, functionality, and interoperability with its other systems. Although government guidance has been minimal, the fact sheet provides some insight into the government’s stance on regulatory requirements for electronic I-9s and may be helpful to employers when selecting an I-9 software.

©2024 Greenberg Traurig, LLP. All rights reserved.
For more news on Electronic Form I-9 Processing, visit the NLR Labor & Employment section.

January 2024 Update: US Department of State Announces Pilot Program for Stateside H-1B Visa Renewals

On January 18, 2024, the Department of State published an online tool that H-1B visa applicants can use to determine if they are eligible for the stateside visa renewal pilot program. Over time, it is likely that the Department of State will expand eligibility. We expect the online tool for the program described below to be updated as the program expands.

Domestic Visa Renewal Eligibility Assessment

In December 2023, the US Department of State announced a pilot program for stateside renewal of certain visas. For the first time in nearly two decades, a limited number of H-1B nonimmigrants will be able to renew their visas from within the United States.

All nonimmigrant visas are currently issued by US Embassy and Consular officials outside of the United States. Beginning on January 29, 2024, the State Department will begin allowing certain nonimmigrants to renew their expired and expiring visas inside the United States. Applicants meeting the requirements of the program may submit an online application between January 29 and April 1, 2024. This is welcome news as visa processing at Consulates and Embassies abroad has become increasingly unpredictable and fraught with delays.

This is a pilot program that will be available on a very limited basis initially. However, the State Department has indicated a desire to expand the program after the pilot allows for the resolution of any operational issues.

This pilot program will allow for limited renewal of nonimmigrant visas in the United States. Eligibility will be limited to applicants who(se):

  1. are renewing H-1B visas (H-4 and other visa classifications are not part of the pilot program);
  2. prior H-1B visa being renewed was issued by either:
  3. Mission Canada (i.e., US Consular posts located in Canada) with an issuance date from January 1, 2020 through April 1, 2023 OR
  4. Mission India (i.e., US Consular posts located in India) with an issuance date of February 1, 2021 through September 30, 2021;
  5. are nationals of countries which are not subject to reciprocity fees for H-1B visas;
  6. are eligible for a waiver of the usual in-person interview requirement;
  7. have submitted ten fingerprints in connection with a previous visa application;
  8. prior H-1B visa does not contain a “clearance received” notation;
  9. does not have an ineligibility basis that requires a waiver prior to visa issuance;
  10. 10.has an approved and valid H-1B petition;
  11. 11.was most recently admitted to the US in H-1B status;
  12. 12.is currently maintaining H-1B status in the US;
  13. 13.period of authorized H-1B admission has not expired; and
  14. 14.intends to reenter the US in H-1B status after temporary travel abroad.

Beginning January 29, 2024, eligible applicants may submit an application online through the State Department website. The State Department will allow approximately 4,000 applications each week, with 2,000 for applicants whose prior H-1B visas were issued by Mission Canada, and another 2,000 for applicants whose prior H-1B visas were issued by Mission India. Once the application limit has been reached, the application portal will be locked until the next allotment of application slots are released based on the schedule. On each Monday in February, the website will reopen for new submissions. The application period for the program will end the earlier of when all available application slots have been filled, or on April 1, 2024.

Applicants will be asked to complete an online application including:

  • a self-assessment of eligibility for the pilot program;
  • a Form DS-160 online visa application;
  • payment of the $205 non-refundable Machine-Readable Visa (MRV) fee; and
  • required documents, including:
    • a properly completed, electronically filed Form DS-160;
    • one photograph meeting Department of State specifications;
    • original passport, valid for at least 6 months beyond the visa application date;
    • original or copy of current Form I-797 Notice of Action (H-1B approval notice);
    • original or copy of the applicant’s Form I-94 (available online here); and
    • fee payment confirmation.

Processing time is expected to be approximately 6 to 8 weeks, with visaed passports returned to applicants via US postal service or courier. All documents must be submitted by April 15, 2024. The State Department aims to complete processing of all applications under this pilot program by the program’s conclusion date of May 1, 2024.

Prior to 2004, the State Department ran a similar program, allowing for H, L, O, I, E, and P visas to be renewed by mail through a State Department office in Washington, DC. Visa revalidation in the US was terminated in July 2004 due to the State Department’s inability to collect biometric data in the US as required by post-9/11 security enhancements.

The return of this program, and the ability of participants to secure a needed visa before departing the United States, will help alleviate the uncertainty associated with foreign travel for those who must secure new visas while abroad in order to return to the United States.

©1994-2024 Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. All Rights Reserved.
For more news on Stateside H-1B Visa Renewals, visit the NLR Immigration section.

DHS Publishes List of Countries Eligible for H-2A, H-2B Visa Programs

The Department of Homeland Security has published lists of countries whose nationals will be eligible for the H-2A and H-2B visa programs in the upcoming year.

‌Key Points:

  • The lists are mostly unchanged from last year, with one addition, Bolivia, to both lists.
  • All nationals who were eligible for the H-2A and H-2B visa programs last year will remain eligible this year.
  • Nationals of Mongolia and the Philippines will remain eligible for the H-2B visa program but not the H-2A program. Nationals of Paraguay will remain eligible for the H-2A program but not the H-2B program.
  • Nationals of countries that are not on the lists may be eligible for H-2A or H-2B visas on a case-by-case basis if U.S. Citizenship and Immigration Services makes a determination that issuing a visa would be in the national interest.

Additional Information: The countries whose nationals are eligible for the H-2A and H-2B visa programs are as follows.

Andorra The Kingdom of Eswatini Madagascar Saint Lucia
Argentina Fiji Malta San Marino
Australia Finland Mauritius Serbia
Austria France Mexico Singapore
Barbados Germany Monaco Slovakia
Belgium Greece Mongolia* Slovenia
Bolivia Grenada Montenegro Solomon Islands
Bosnia and Herzegovina Guatemala Mozambique South Africa
Brazil Haiti Nauru South Korea
Brunei Honduras The Netherlands Spain
Bulgaria Hungary New Zealand St. Vincent and the Grenadines
Canada Iceland Nicaragua Sweden
Chile Ireland North Macedonia Switzerland
Colombia Israel Norway Taiwan***
Costa Rica Italy Panama Thailand
Croatia Jamaica Papua New Guinea Timor-Leste
Republic of Cyprus Japan Paraguay** Turkey
Czech Republic Kiribati Peru Tuvalu
Denmark Latvia The Philippines* Ukraine
Dominican Republic Liechtenstein Poland United Kingdom
Ecuador Lithuania Portugal Uruguay
El Salvador Luxembourg Romania Vanuatu
Estonia

*Mongolia and the Philippines are eligible to participate in the H-2B program but are not eligible to participate in the H-2A program.

**Paraguay is eligible to participate in the H-2A program but is not eligible to participate in the H-2B program.

©2023 Berry Appleman & Leiden. All Rights Reserved.
For more news on Visa Program Eligibility, visit the NLR Immigration section.

DHS Guidelines Give Protection from Deportation to Undocumented Workers Who Report Labor Violations

If an employer hires undocumented workers, are they covered under the U.S. employment laws? Initially, employers must complete Form I-9s for all new employees and cannot hire workers who are unable to establish that they’re authorized to work. But once hired, the script flips and undocumented workers generally enjoy the same legal protections as the rest of the workforce (e.g., Title VII, FLSA, etc.). Undocumented workers, however, are often reluctant to make complaints to or cooperate in investigations with the EEOC, the Department of Labor, or other labor agencies, even when they have a legitimate beef with their employer. Why? It may be at least in part because they fear that they’ll be hauled into immigration court and deported. But now, the Biden administration has given those workers a possible safety valve.

Last month, the Department of Homeland Security released guidelines providing a process for undocumented workers to seek deferred action from removal (deportation) when they report a violation to a labor agency or cooperate in an agency investigation. In some circumstances, the individuals who utilize this process may also be eligible for temporary work authorization. Although each request for deferred action will be decided on a case-by-case basis, it’s clear that the purpose of this new process is to encourage undocumented workers to report labor violations and assist with agency investigations.

How Does the Process Work?

The U.S. Citizenship and Immigration Services (USCIS) will manage the process using a centralized intake system. If an undocumented worker makes a complaint to the EEOC, the DOL, or other labor agency, or assists the agency with an investigation, that worker can request deferred action from removal by submitting certain required documents. Among other things, the worker must submit his or her own statement setting forth the basis for the request, as well as a supporting “statement of interest” from the involved labor agency. According to the guidelines, the agency’s “statement of interest” should provide details about the nature of its investigation, how the worker may be helpful to that investigation, and how granting the worker’s request for deferred action would support the agency’s enforcement interests.

If the worker is already in removal proceedings or subject to an order of removal, the request for deferred action will be forwarded to ICE for determination. Otherwise, USCIS will adjudicate the request. Either way, USCIS or ICE will exercise its discretion on a case-by-case basis. In certain cases, the interested agency may also ask that the worker’s request be adjudicated on an expedited basis.

If an undocumented worker’s request is approved, the grant of deferred action will normally be good for two years, although it is subject to termination at any time. When submitting the request, the worker may also apply for temporary employment authorization on USCIS Form I-765. Approved applications for employment authorization, while not guaranteed, will typically allow the individual to work for the entire period of deferred action. Subsequent requests to extend the worker’s deferred action can be made if the labor agency continues to have an investigative or enforcement interest in the worker’s matter.

What’s the Practical Impact?

This is less clear. Will undocumented workers take advantage of this new process in significant numbers? The guidelines offer some potential protection, but the approval of an individual worker’s request is not automatic and, even if approved, the grant of deferred action is temporary.  Notably, the guidelines do not provide any long-term path to lawful status. And, because the guidelines have been issued without Congressional or regulatory action, they are subject both to being challenged in the courts and to being revoked in two years if there’s a change in the White House. Will undocumented workers feel comfortable using this process in the face of all this uncertainty? Stay tuned.

Article By Keith Covington and Anne R. Yuengert of Bradley Arant Boult Cummings LLP

For more immigration legal news, click here to visit the National Law Review.
© 2023 Bradley Arant Boult Cummings LLP

DHS May Make Form I-9 Flexibility a Fixture

The Department of Homeland Security (DHS) announced it is considering changes to the Form I-9 documentation examination procedures. As human resources teams know, the remote workplace that became common during the COVID-19 pandemic made an already complicated I-9 process a logistical nightmare. With the U.S. government’s declaration of a national emergency due to the COVID-19 pandemic, DHS and Immigration and Customs Enforcement (ICE) announced certain flexibilities in March 2020 that suspended the requirement of in-person review of I-9 documents when a company was operating remotely due to COVID-19. Those flexibilities have been extended numerous times and are currently set to expire Oct. 31, 2022.

While DHS says it is considering making these temporary flexibilities permanent, the Notice of Proposed Rule Making (NPRM) published last month does not seek to do so. Instead, the NPRM seeks to validate the authority of the DHS secretary to enact flexibilities, offer alternative options, and/or implement a pilot program to evaluate existing and additional alternative I-9 procedures for some or all employers. DHS recognizes that more and more employers are utilizing telework and remote work for their employees and that requiring in-person review of I-9 documents is no longer consistent with work patterns of many businesses.

Some of the more notable possible changes to the I-9 process described in the NPRM include requiring employers to note on the Form I-9 which of the alternative procedures they used; requiring employers to retain copies of I-9 documents; requiring online training on fraudulent document and/or anti-discrimination training for employers who wish to utilize the alternative procedures; and limiting eligibility to use the alternative procedures to employers that utilize E-Verify, the government’s online employment verification system.

Comments to the NPRM are due on or before Oct. 17, 2022.

Article By Rebecca B. Schechter of Greenberg Traurig, LLP

For more immigration legal news, click here to visit the National Law Review.

©2022 Greenberg Traurig, LLP. All rights reserved.

DHS Proposes Rule Updating I-9 Verification Requirements

On August 18, 2022, the Department of Homeland Security (DHS) published a proposed rule in the Federal Register that would grant it broader authority to permit alternative document inspection procedures for I-9 document verification in lieu of the physical inspection requirement.

In response to the COVID-19 pandemic, DHS implemented temporary accommodations for remote I-9 document inspection in order to encourage social distancing and remote work. These accommodations have been extended several times, and currently remain in effect until October 31, 2022. While the proposed rule does not directly make these accommodations permanent, it does codify into the regulations the agency’s authority to set forth either temporary or permanent alternative document inspection procedures.

The proposed rule provides significant flexibility to DHS in determining whether, when, and how to implement alternative examination procedures. According to the proposed rule, DHS may implement new examination options as part of a limited pilot program, upon the agency’s determination that such alternative procedures would not diminish the security of the I-9 verification process, or as a temporary measure in response to a public health emergency.

The proposed rule also includes details about how DHS may implement future document inspection changes, including:

  • limiting implementation only to employers enrolled in E-Verify

  • updating document retention requirements

  • changing the Form I-9 to allow employers to clearly note the use of alternative examination procedures

Now that the proposed rule has been published in the Federal Register, the public will have a 60-day comment period to provide feedback on the proposal as well as comments on how DHS may use this additional authority to make I-9 document inspection easier for employers. After the public comment period closes, DHS will have the opportunity to review and analyze all comments provided and, should the agency decide to move forward with the regulation, proceed with publishing the final rule.

Article By Derek J. Maka of Ogletree, Deakins, Nash, Smoak & Stewart, P.C.

For more immigration legal news, click here to visit the National Law Review.

© 2022, Ogletree, Deakins, Nash, Smoak & Stewart, P.C., All Rights Reserved.

USCIS to Implement Premium Processing for Certain Previously Filed Form I-140 Petitions

On May 24, 2022, U.S. Citizenship and Immigration Services (USCIS) announced that it would begin implementing premium processing for certain petitioners who have a pending Form I-140 under the EB-1 and EB-2 classifications.

As explained in our previous alert, USCIS had announced that it will expand its premium processing service to include additional immigration benefit case types, pursuant to a final rule issued by the Department of Homeland Security (DHS). The rule is intended to implement the Emergency Stopgap USCIS Stabilization Act passed by Congress and is part of USCIS’s efforts to reduce existing backlogs and provide needed relief to Employment Authorization Document (EAD) cardholders.

While the rule will become effective on May 31, 2022, it will be implemented in a phased approach over a three-year period. USCIS has now begun implementing these changes to premium processing, starting with certain Form I-140 classifications: EB-1C (classification as a multinational executive or manager) and EB-2 (classification as a member of professions with advanced degrees or exceptional ability seeking a national interest waiver (NIW)).

This expansion will occur in the following phases:

  • Beginning June 1, 2022, USCIS will accept premium processing requests for EB-1C multinational executive and manager petitions received on or before January 1, 2021.
  • Beginning July 1, 2022, USCIS will accept premium processing requests for EB-2 NIW petitions received on or before June 1, 2021, and EB-1C multinational executive and manager petitions received on or before March 1, 2021.

USCIS will only accept premium processing requests for currently pending cases based on their date of filing, as noted above. USCIS is not accepting new Form I-140 petitions in these categories with a premium processing request at this time. We anticipate that USCIS will expand premium processing requests for more recently filed EB-1 and EB-2 petitions in the future.

Article By Shannon N. Parker of Mintz

For more immigration legal news, click here to visit the National Law Review.

©1994-2022 Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. All Rights Reserved.

DHS Announces Temporary Protected Status for Ukraine and Redesignates TPS for South Sudan

Ukraine

The Department of Homeland Security (DHS) announced that Ukraine has been designated for “Temporary Protected Status” (TPS) for 18 months due to the invasion by Russia and ongoing conflict.

To qualify, Ukrainian nationals must have continuously resided in the United States as of March 1, 2022, and must apply to the U.S. Citizenship and Immigration Services within 180 days (until August 28, 2022). TPS applicants may also apply for Employment Authorization Documents (EADs) allowing them to work lawfully in the United States.

The TPS designation for Ukraine will remain in effect through September 1, 2023, at which time DHS will determine whether to redesignate or extend the current designation. Redesignation may extend TPS eligibility to Ukrainian nationals who arrived in the United States after March 1, 2022.

South Sudan

DHS also redesignated and extended TPS for South Sudan until November 3, 2023. South Sudanese TPS beneficiaries must re-register by May 3, 2022. EADs set to expire are automatically extended until November 3, 2022, but applications for new EADs must be filed as soon as possible. South Sudanese nationals and aliens having no nationality who last habitually resided in South Sudan may submit initial registration applications under the redesignation for TPS for South Sudan and apply for EADs.

Copyright © 2022, Hunton Andrews Kurth LLP. All Rights Reserved.

Article By Ian P. Band of Hunton Andrews Kurth

For more articles on Ukraine, visit the NLR Immigration section.

CISA Releases “Cyber Essentials” to Assist Small Businesses Updated

On November 6, 2019, the Department of Homeland Security (“DHS”), Cybersecurity & Infrastructure Security Agency (“CISA”) released its Cyber Essentials guide. Consistent with the NIST Cybersecurity Framework, these Cyber Essentials provide “a starting point to cyber readiness,” and are specifically aimed at small businesses and local government agencies that may have fewer resources to dedicate to cybersecurity.

The guide suggests a holistic approach for managing cyber risks, and is broken down into six “Essential Elements of a Culture of Cyber Readiness,” specifically:

  • Yourself – driving awareness, strategy, and investment to build and sustain a culture of cybersecurity.
  • Your Staff – developing awareness and vigilance because your staff is often the first line of defense.
  • Your Systems – protecting your information and critical assets and applications.
  • Your Surroundings – limiting access to your digital environment.
  • Your Data – having a contingency plan to recover systems, networks, and data from trusted backups.
  • Your Actions Under Stress – planning and conducting drills for cyberattacks to bolster readiness to respond, limit damage, and restore operations in the event of an attack.

The final section of the guide provides a list of steps that small businesses can take immediately to increase organizational preparedness against cyber risks. These include backing up data (automatically and continuously), implementing multi-factor authentication (particularly for privileged, administrative, and remote access users), enabling automatic updates, and deploying patches quickly.

CISA’s Cyber Essentials guide is just the most recent example of a user-friendly resource aimed at assisting small businesses seeking lower-cost cybersecurity solutions. Recognizing that investing in cybersecurity may be difficult for some small businesses, Government agencies are making an effort to help small businesses understand the importance of cybersecurity.

For example, the U.S. Small Business Administration (“SBA”) has a page dedicated to providing information and resources for small business cybersecurity. It outlines common threats, risk assessment, and cybersecurity best practices. It also provides a list of upcoming training and events related to small business cybersecurity. Other entities, including the National Institute of Standards and Technology, the Federal Trade Commission, and the Federal Communications Commission also provide similar resources specifically tailored to small businesses.

The main takeaway here is that all organizations – regardless of size or resources – should take basic steps to improve their cybersecurity resilience.

Copyright © 2019, Sheppard Mullin Richter & Hampton LLP.

ARTICLE BY Jonathan E. Meyer, Townsend L. Bourne and Nikole Snyder a Law Clerk in Sheppard, Mullin, Richter & Hampton LLP’s Washington, D.C. office.