Work This Way: A Labor & Employment Law Podcast - Episode 28: Construction Compliance with Joan Moore and Mim Munzel of The Arbor Consulting Group
DE Under 3: FAR Council Seeks to Require Federal Contractors to Report First-Tier Subcontractor Information, Including Potentially Executive Compensation Data
DE Under 3: Contractors Have Second Opportunity to Comment on OFCCP’s Supply & Service Contractor Portal Information Collection
Preparing for Major Changes to DOT’s Disadvantaged Business Enterprise DBE Program
Excitement, Turbulence & Confusion: The Top 10 Employment Law Issues That Affected Federal Contractors in 2023
Successor Government Contractor Hiring Obligations Change: DOL’s Long Awaited Nondisplacement Rule
DE Under 3: What Federal Contractors Need to Know About OFCCP's New Audit Scheduling Letter
[Podcast] TikTok off the Clock: Navigating the TikTok Ban on Devices for Government Contractors
Partnering to Win: Teaming, Subcontracting, Joint Ventures, and Mentor Protégé Agreements
Construction Roundtable: Top 4 Legal Risks for Federal Construction Contractors
DE Under 3: OFCCP's Modified Proposal to Revise Scheduling Letter & Itemized Listing Revealed Via Newly Proposed Documents
Flow-Down Clauses in Federal Government Contracts - Tutorial 1 (Fundamentals)
Joint Venture Basics for Large and Small Contractors
Webinar: Trademarks and Government Contracting
Bidding for Major Contracts? Compliance Requirements You Should Prepare for Now
#WorkforceWednesday: Independent Contractor Rule Reinstated, OFCCP Targets Pay Equity Audits, OSHA Focuses on Health Care Facilities - Employment Law This Week®
Government Contractors: Preparing for OFCCP’s Affirmative Action Program Compliance Certification
DE Talk | OFCCP in 2022: Lean Staff, Big Goals & New Changes Afoot
Construction Webinar Series: Construction Contractors: Considerations in Subcontracting Plans and OFCCP Compliance
Construction Webinar Series: The Infrastructure Bill’s Impact on DOT’s Disadvantaged Business Enterprise Program
Cybersecurity Maturity Model Certification (CMMC) is coming — and now appears to be coming faster than many defense contractors believed. In the latest signal of CMMC’s forward momentum, the Department of Defense (DoD) issued...more
As we promised a trilogy in our earlier 2024 CMMC Blog – “Get Ahead of Compliance: The Proposed Rule for the Cybersecurity Maturity Model Certification (CMMC 2.0) Is Out!” – we continue our series with a discussion of each...more
President Joe Biden’s October 2023 Executive Order on AI directed agencies to institute a significant number of actions on AI. On April 29, 2024, the White House announced that federal agencies had completed “all of the...more
On December 26, 2023, the Department of Defense (“DoD”) belatedly gifted defense contractors and subcontractors a Proposed Rule on the Cybersecurity Maturity Model Certification (“CMMC”) Program. DoD also released eight CMMC...more
The US Department of Defense (DoD) has issued a proposed rule to implement its long-awaited Cybersecurity Maturity Model Certification program (CMMC 2.0). This proposed rule — released on December 26, 2023, and published in...more
In this series of articles, we explore the different certification requirements of CMMC Level 1, 2 and 3, the impact on contractors and external service providers, and proposed next steps... On December 26, 2023, the US...more
The U.S. Department of Defense released a special holiday treat for government contractors and subcontractors last week in the form of long-promised proposed regulations for its Cybersecurity Maturity Model Certification...more
The Department of Defense (DoD) delivered its proposed Cybersecurity Maturity Model Certification Program rule (CMMC) the day after Christmas this year, including several related guidance documents (listed here). The proposed...more
Two years after announcing the second iteration of the U.S. Department of Defense's (DoD) Cybersecurity Maturity Model Certification (CMMC) program, the DoD released its proposed rule that, if adopted, will implement the...more
In what can best be described as a tsunami of cybersecurity regulation, the Federal Acquisition Regulation (FAR) Council—consisting of the Department of Defense (DoD), General Services Administration (GSA), and National...more
Monday, June 5, 2023: Based on Either An Unannounced OFCCP Policy Change Or Error, OFCCP Published A CSAL Identifying 250 “Construction Contractors” For Audit - Via an email to stakeholders, OFCCP announced the publication...more
NIST Seeks Small Business Input for Chips Manufacturing Data and Analysis - As the United States works to bolster its semiconductor manufacturing capacity, the National Institute of Standards and Technology (NIST) is...more
This is not a blog post about the CMMC. The blogosphere is saturated with CMMC content, and the longer the program stretches into indefiniteness, the more content is delivered to an audience drowning it out....more
What: Cleared Defense Contractors (CDCs) are being actively targeted by Russian state-sponsored cyber activity, according to a Joint Cybersecurity Advisory from the Federal Bureau of Investigation (FBI), National Security...more
On March 4, 2021, the U.S. Government Accountability Office (“GAO”) published a report titled “Weapon Systems Cybersecurity: Guidance Would Help DOD Programs Better Communicate Requirements to Contractors” (the “Report”).1...more
Legislation directing the National Institute of Standards and technology (“NIST”) to create standards and guidelines for securing Internet of Things (“IoT”) devices used by Federal agencies and their contractors recently...more
On November 30, 2020, the U.S. Department of Defense (“DoD”) will begin to roll out the new Cybersecurity Maturity Model Certification (“CMMC”) framework that eventually will require all DoD contractors, subcontractors, and...more
As of November 30, 2020, certain U.S. Department of Defense (“DoD”) prime contractors and subcontractors will need to complete a cybersecurity self-assessment prior to receiving new DoD contracts and prior to the exercise of...more
The U.S. Department of Defense (DoD) released version 1.0 of its Cybersecurity Maturity Model Certification (known as CMMC) on Jan. 31, 2020. The CMMC model draws heavily on the National Institute for Standards and...more
January 2020 was a very important month for DOD’s Cybersecurity Maturity Model Certification (CMMC) initiative. Last week, on January 31, 2020, DOD issued CMMC “Version 1.0” to the public....more
- DoD has released the final version of the CMMC framework. - DoD anticipates that CMMC requirements will appear in a limited number of solicitations starting in October 2020 and that they will appear in all DoD...more
On January 30, the US Department of Defense (DoD) released version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework, which will require DoD contractors and subcontractors to obtain third-party...more
2019 has been a year of pivotal developments for defense contractors in the realm of cybersecurity compliance. The Department of Defense (DoD) issued six guidance memoranda to assist its acquisition personnel in developing...more
Whistleblower programs that previously focused on traditional concerns such as accounting and FCPA issues should now consider expanding to incorporate company IT and information security teams and account for data protection...more
For over a year now, federal defense contractors have been required to comply with Defense Federal Acquisition Regulation Supplement (DFARS) Clause 252.204-7012, Safeguarding Covered Defense Information and Cyber Incident...more