Cost, Compliance & Risks

So you want to acquire a government contractor? Makes sense, and you’re not alone. Over the past few years, the federal contracting landscape continues to evolve as a result of mergers and acquisitions (M&A), primarily involving the acquisition of small and midsize contractors by larger entities as a means to quickly expand into new federal markets. This trend is especially prevalent in the information technology (IT) market, where the acquisition of small or midsize IT firms with new capabilities can provide larger firms with shiny new toys to share with their roster of government clients to gain a larger share of the federal IT “pie,” if not create—almost overnight—new IT market leaders in areas such as cloud computing, cybersecurity, software, and predictive intelligence.Continue Reading Integrating Cybersecurity Into M&A Compliance Reviews: Avoiding Hidden Cyber Risks in the Acquisition of Government Contractors

The Trump administration’s focus on enhancing “Buy American” requirements in federal procurement took a leap forward on July 15, 2019, with the issuance of an Executive Order (EO) on Maximizing Use of American-Made Goods, Products, and Materials. Unlike the administration’s previous executive orders – Executive Order 13788 of April 18, 2017 (Buy American and Hire American) and Executive Order 13858 of January 31, 2019 (Strengthening Buy American Preferences for Infrastructure Projects), this EO contains instructions to the FAR Council to change regulations that have been in place since the Eisenhower administration, tightening restrictions on acquiring foreign end products.  In particular, the EO makes dramatic changes to the domestic origin requirements for iron and steel products.
Continue Reading Buy (More) American: The Trump Administration Finally Ups the Ante on Domestic Origin Requirements (With the Final Impact Still TBD)

DoD’s recent efforts to address cybersecurity have caused confusion and chaos for Government contractors. As we all know, cybersecurity is an issue that is impossible to ignore, and the sobering reality is that compliance with federal cybersecurity requirements is critical to avoiding catastrophic liability. Recently, McCarter & English Government Contracts and Export Controls co-leaders Alex

As we stated last month, further restrictions are afoot on the use of Chinese technology in federal acquisitions. An Interim Rule issued by the Department of Defense (DoD), General Services Administration (GSA), and National Aeronautics and Space Administration (NASA) (collectively, the “FAR Council”) implements the first phase of Section 889 of the FY2019 National Defense Authorization Act (NDAA). The Interim Rule, effective August 13, 2019, broadly prohibits federal agencies, federal contractors, and grant or loan recipients from procuring “covered telecommunications equipment or services” produced by Huawei Technologies Company and ZTE Corporation and, with respect to certain public safety or surveillance applications, Hytera Communications Corporation, Dahua Technology Company, and Hangzhou Hikvision Digital Technology Company. In particular, federal suppliers are prohibited from sourcing “substantial or essential component of any system, or as critical technology as part of any system” from the foregoing companies.
Continue Reading Know Your Supplier: Effective August 13, 2019, Certain Chinese Telecoms Banned From Federal Procurement

As we reported last month, the Department of Defense (DoD) has been engaging in an unusual rollout of its new cybersecurity certification program by way of  road tours—led by Katie Arrington, the Special Assistant to the Assistant Secretary of Defense for Acquisition and Sustainment for Cyber—that address the tiered, five-level Cybersecurity Maturity Model Certification (CMMC). At bottom, DoD intends for the CMMC to help streamline the acquisition process by providing acquiring agencies and consenting contractors with more exacting cybersecurity requirements for future acquisitions. What’s unique about the CMMC rollout is the lack of written guidance on the program. DoD representatives have orally provided a majority of publicly available information about CMMC only during various webinars and defense-industry events held over the past couple of months. Indeed, a quick Google search for “CMMC” indicates that, at this time, hard facts about the program appear to be limited to FAQs on a DoD website.
Continue Reading Cybersecurity – The Times (and Standards) They Are A Changin’ – FAST!

Every government contractor hesitates and ponders whether information confidential and valuable to its business that is disclosed – either voluntarily or by compulsion – in a submission to a U.S. Government agency will be protected from release to a third party pursuant to that dreaded four-letter acronym: F-O-I-A. In a June 24, 2019, landmark decision, the U.S. Supreme Court, in Food Marketing Institute v. Argus Leader Media[1], has spoken for the first time on FOIA exemption covering such information – and the news is good for contractors seeking maximum protection of their valuable confidential IP and business information.
Continue Reading Good News for Federal Contractors – FOIA “Exemption 4” Protecting Confidential Information Gets Expansive Definition by U.S. Supreme Court in Food Marketing Institute v. Argus Leader Media

Cough…cough…ahem…cough… Any contractor who has had the misfortune of dealing with the Defense Contract Audit Agency (DCAA) likely knows all too well that the agency is the Will Rogers of costs – it never met a cost it didn’t question.  Indeed, DCAA auditors typically question costs with reckless abandon and based often on a patent misreading of applicable regulations.  The net effect, of course, is that contractors have to expend significant time and money trying to explain to boards and courts why DCAA’s auditors are…uh…incorrect as a matter of fact and law.  A recent Memorandum for Regional Directors (MRD) provides some transparency into why this sort of thing happens with unfortunate regularity. Issued on May 14, 2019, the MRD (No. 19-PAC-002(R)), corrects…er…“revises” internal guidance issued in 2014 and 2015 relating to the identification of expressly unallowable costs.  The newly issued memo sets out DCAA’s current stance on identifying expressly unallowable costs under the cost principles codified at Federal Acquisition Regulation (FAR) Part 31 and Defense Federal Acquisition Regulation Supplement (DFARS) Part 231.  This MRD – like all MRDs – is intended to be used as a tool by well-meaning (but often overzealous) auditors when reviewing a contractor’s compliance with federal cost principles.  Contractors should, thus, pay careful attention to this MRD in order to be prepared for questions that may arise during DCAA-led frolics and detours.
Continue Reading Let Me Clear My Throat: DCAA Course Corrects on “Expressly Unallowable” Costs

Cybersecurity. It’s never over, is it? In what can only be described as a “soft” release, the Department of Defense (DoD) has slowly and quietly begun to reveal its intent to provide federal contractors with formal cybersecurity certification as early as next year. The program, known as the Cybersecurity Maturity Model Certification (CMMC), is an effort to streamline the acquisition process by providing acquiring agencies and consenting contractors with more exacting cybersecurity requirements for forthcoming acquisitions.
Continue Reading Never Stop Never Stopping: Defense Department Quietly Unveils Proposed Cybersecurity Maturity Model Certification Standards and Confirms the Allowability of Certain Cybersecurity Costs

Section 8(a) of the Small Business Investment Act of 1958 authorizes the Small Business Administration (“SBA”) to enter into prime contracts with federal agencies and to subcontract the performance of the contract to qualified small businesses. As most are aware, the 8(a) program is designed to assist “socially and economically disadvantaged small business” concerns that are owned by one or more individuals who are from a socially and economically disadvantaged group and whose management and daily operations are controlled by such individuals. 15 U.S.C. § 637(a)(4)(A)-(B). Included in the definition of “socially and economically disadvantaged groups” are, among others, Indian tribes, Native Hawaiians, and Alaskan Natives, which allows each “maximum practical opportunities” to participate in the government contracting market. But in so doing, those companies must stomach the good with the bad, i.e., they must be prepared to (a) navigate the thicket of regulatory hurdles required to do business with the government and (b) combat potential allegations of fraud if there is a perception that one or more of those hurdles has not been cleared successfully.
Continue Reading Alutiiq False Claims Act Settlement Highlights Significant Government Contract Compliance Risks for Tribal, NHO, and ANC 8(a) Subsidiaries

Effective Date of Increase and Customs Reporting Guidance

On May 9, 2019, the Office of the U.S. Trade Representative (USTR) announced an increase in duties pursuant to Section 301(b) of the Trade Act of 1974, as amended (Section 301), from 10% to 25%, on over 5,700 Harmonized Tariff Schedule of the United States (HTSUS) products imported from China. The increase, covering $200 billion in products that were subject to 10% additional duties since September 24, 2018, was set to rise to 25% at the beginning of this year, only having to be postponed twice to allow U.S.–China trade negotiations to bear fruit. They did not.Continue Reading International Trade Update: U.S. Heightens Tariffs on Chinese Goods; China Reciprocates