Podcast - Navigating M&A Due Diligence: Safeguarding Security Clearances
Podcast - Change Condition Packages: Tips for Cleared Contractors
Podcast - Corporate Documents in the Context of Clearances
Navigating Personnel Security Clearances (PCLs)
Cybersecurity Insights: Updates on CMMC Implementation and CUI Identification
What Is an FCL and How Do I Obtain One?
Protecting Our Nation’s Data: Cybersecurity Compliance for Government Contractors
Intellectual Property In Department of Defense Contracting
The When, Where, Why and How of CMMC with Fernando Machado
Podcast - The State of Contractor Cybersecurity with Katie Arrington
What Do the Newly Released CMMC 2.1 Documents Mean?
Podcast - Third-Party Assessments and NIST SP 800-171
Third-Party Assessments and NIST SP 800-171
Cybersecurity for Government Contractors: Success Through Compliance Readiness
Overcoming the Inflation Crisis: The Ins and Outs of Inflation Relief for DOD Contractors
[Podcast] NSA Cybersecurity Services for Defense Contractors
Torres Talks Trade Podcast- Episode 2- Cybersecurity, the Department of Defense, and the Private Sector/Government Contracting
2022 NDAA: Important Considerations for Government Contractors
Compliance Into The Weeds - Retreat on DoD Cybersecurity for Contractors
Cybersecurity Maturity Model Certification (CMMC) is coming — and now appears to be coming faster than many defense contractors believed. In the latest signal of CMMC’s forward momentum, the Department of Defense (DoD) issued...more
The United States Department of Defense (DoD) took another big step on the path to instituting its highly anticipated Cybersecurity Maturity Model Certification 2.0 program (CMMC 2.0). Once finalized, CMMC 2.0 will establish...more
Defense contractors and subcontractors that handle Controlled Unclassified Information (CUI) and do not have robust information-security system controls in place better get their house in order now if they want to do business...more
Department of Defense (DOD) Final Rule: Defense Federal Acquisition Regulation Supplement (DFARS), Architect and Engineering Service Fees - On June 27, DOD published a final rule updating the DFARS increasing the fee limit...more
Small Business Administration (SBA) Direct Final Rule: Eliminating Self-Certification for Service-Disabled Veteran-Owned Small Businesses (SDVOSBs) - On June 6, SBA published a direct final rule amending its SDVOSB...more
U.S. Attorney Nikolas P. Kerest recently highlighted the severity of fraud by government contractors and subcontractors, emphasizing the importance of upholding the integrity of government procurement programs. These remarks...more
As we promised a trilogy in our earlier 2024 CMMC Blog – “Get Ahead of Compliance: The Proposed Rule for the Cybersecurity Maturity Model Certification (CMMC 2.0) Is Out!” – we continue our series with a discussion of each...more
On February 15, 2024, the Department of Defense (DOD) issued a final rule amending the Defense Federal Acquisition Regulation Supplement (DFARS) to implement Executive Order (EO) 14005, Ensuring the Future Is Made in All of...more
On December 26, 2023, the Department of Defense (“DoD”) belatedly gifted defense contractors and subcontractors a Proposed Rule on the Cybersecurity Maturity Model Certification (“CMMC”) Program. DoD also released eight CMMC...more
The Biden administration’s Fall 2023 United Agenda of Regulatory and Deregulatory Actions included a variety of near and long term regulatory plans for federal agencies, including regulatory action for pay equity and...more
The US Department of Defense (DoD) has issued a proposed rule to implement its long-awaited Cybersecurity Maturity Model Certification program (CMMC 2.0). This proposed rule — released on December 26, 2023, and published in...more
The proposed rule requires contractors to make annual affirmations regarding their cybersecurity maturity, thus increasing their risk of False Claims Act Liability. The proposed rule allows for limited use of Plans of...more
In this series of articles, we explore the different certification requirements of CMMC Level 1, 2 and 3, the impact on contractors and external service providers, and proposed next steps... On December 26, 2023, the US...more
US President Joseph Biden recently signed the National Defense Authorization Act for Fiscal Year 2024 into law. Implications for government contractors range from new restrictions on greenhouse gas emissions certifications to...more
The Department of Defense (DoD) delivered its proposed Cybersecurity Maturity Model Certification Program rule (CMMC) the day after Christmas this year, including several related guidance documents (listed here). The proposed...more
In addition to prohibiting the flow-down of non-mandatory FAR/DFARS clauses (which we talk about here), the Department of Defense (“DOD”) Final Rule in connection with the Defense Federal Acquisition Regulation Supplement...more
On December 14, 2023, the House of Representatives passed the National Defense Authorization Act for Fiscal Year 2024 (NDAA), following the Senate’s passage a few days earlier. The President is expected to sign the NDAA into...more
Department of Defense (DOD) Notice and Request for Comments: Negotiation of a Reciprocal Defense Procurement (RDP) Agreement with the Republic of India - On October 10, 2023, DOD issued a notice that, on behalf of the...more
In what can best be described as a tsunami of cybersecurity regulation, the Federal Acquisition Regulation (FAR) Council—consisting of the Department of Defense (DoD), General Services Administration (GSA), and National...more
Many government agencies accomplish their critical missions by using private transportation and logistics services. The General Services Administration (GSA) is often the key federal agency for managing private procurement of...more
Federal Acquisition Regulation (FAR): Sustainable Procurement, Case 2022-06 - Department of Defense, General Services Administration, and National Aeronautics and Space Administration are proposing to amend the FAR to...more
The U.S. Department of Homeland Security (DHS) has issued comprehensive cybersecurity regulations aimed at protecting Controlled Unclassified Information (CUI). These regulations were long-awaited, as the original proposed...more
Assessing Contractor Implementation of Cybersecurity Requirements (DFARS Case 2019-D041), Department of Defense (DOD), Proposed Rule - DOD is amending an interim rule to implement the Cybersecurity Maturity Model...more
The Department of Defense (DOD) issued a final rule amending the Defense Federal Acquisition Regulation Supplement (DFARS) requiring Contracting Officers to use Supplier Performance Risk System (SPRS) assessments when...more
Effective March 22, 2023, the Department of Defense (DOD) issued a final rule (Final Rule) amending the Defense Federal Acquisition Regulation Supplement (DFARS) requiring Contracting Officers (COs) to use Supplier...more