On October 15, 2024, the Department of Defense (“DoD”) released its final rule (the “Final Rule”) formally establishing the Cybersecurity Maturity Model Certification (“CMMC”) program, nearly three years after first...more
As the presidential race rages on, so too does the race to fully implement the Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The CMMC 2.0 program impacts Defense Industrial Base (DIB) contractors and...more
The U.S. Department of Defense (DOD) issued the proposed Defense Federal Acquisition Regulation Supplement (DFARS) rules that will implement the Cybersecurity Maturity Model Certification (CMMC) program. These rules, which...more
The proposed rule requires contractors to make annual affirmations regarding their cybersecurity maturity, thus increasing their risk of False Claims Act Liability. The proposed rule allows for limited use of Plans of...more
Two years after announcing the second iteration of the U.S. Department of Defense's (DoD) Cybersecurity Maturity Model Certification (CMMC) program, the DoD released its proposed rule that, if adopted, will implement the...more
WHAT: On December 13, 2023, the Department of Defense (DoD) proposed amendments to the National Industrial Security Program Operating Manual (NISPOM) that seek to address the public comments it received in response to its...more
Many government agencies accomplish their critical missions by using private transportation and logistics services. The General Services Administration (GSA) is often the key federal agency for managing private procurement of...more
On November 17, 2021, the U.S. Department of Defense (DOD) published an Advanced Notice of Proposed Rulemaking (ANPRM) previewing significant changes to its Cybersecurity Maturity Model Certification (CMMC) program.1 The...more
On November 4, 2021, the U.S. Department of Defense (DoD) Office of the Under Secretary of Defense for Acquisition and Sustainment (OUSD(A&S)) announced Version 2.0 of the highly publicized Cybersecurity Maturity Model...more
On December 21, 2020, the Department of Defense (DoD) Office of the Undersecretary of Defense for Intelligence & Security published a Final Rule codifying the National Industrial Security Program Operating Manual...more
The Department of Defense has issued a final rule codifying the National Industrial Security Program Operating Manual in the Code of Federal Regulations at 32 C.F.R. Part 117, effective February 24, 2021. The NISPOM governs...more
On December 21, 2020, the Department of Defense (“DoD”) published a final rule in the Federal Register that codifies the National Industrial Security Program Operating Manual (“NISPOM”) in the Code of Federal Regulations...more
The Department of Defense issued a final rule adding the National Industrial Security Program Operating Manual (NISPOM) to the Code of Federal Regulations (CFR) and making other changes relevant to contractors that access...more
The Department of Defense (DOD) is adding the National Industrial Security Program Operating Manual (NISPOM) to the Code of Federal Regulations (CFR). According to the final rule recently published in the Federal Register,...more
In a final rule effective Feb. 24, 2021, the U.S. Department of Defense (DoD) codified the National Industrial Security Program Operating Manual (NISPOM) in Title 32, Part 117 of the Code of Federal Regulations. Of primary...more
• The White House Office of Information and Regulatory Affairs (OIRA) is soliciting public comment on ways to reduce regulatory costs and restrictions on the U.S. maritime industry. • For maritime industry stakeholders,...more