Defense & National Security

If you happen to be a government contractor and are contemplating additions to your Summer reading list, consider adding the FAR Council’s May 3, 2024 advanced notice of proposed rulemaking (“ANPR”) to the mix. The ANPR, which was issued in furtherance of implementing Section 5949 of the FY 2023 National Defense Authorization Act (“NDAA”), contemplates various forthcoming changes to the FAR, all of which focus on banning agencies from purchasing certain products or services that contain or otherwise utilize semiconductors that are produced, designed, or provided by three Chinese entities and their subsidiaries, affiliates, or successors: Semiconductor Manufacturing International Corporation (“SMIC”), ChangXin Memory Technologies (“CXMT”), and Yangtze Memory Technologies Corp. (“YMTC”). In addition, the FAR will likely be amended to prohibit the acquisition of semiconductor products or services from any entity that is owned, controlled by, or otherwise connected to China, North Korea, Iran, Russia and any other “foreign country of concern” – a designation to be determined by the Secretary of Defense or the Secretary of Commerce, in consultation with the Director of National Intelligence or the Director of the Federal Bureau of Investigation.

Continue Reading Supply Chain Checkup: FAR Council Announces New Rulemaking Focused on Prohibiting Certain Semiconductor Acquisitions

On December 26, 2023, the Department of Defense (“DoD”) belatedly gifted defense contractors and subcontractors a Proposed Rule on the Cybersecurity Maturity Model Certification (“CMMC”) Program. DoD also released eight CMMC guidance documents, providing interested parties a one-two combo of what to expect under the Program. The Proposed Rule has already received over 100 comments. With commenting open until February 26, 2024, will DoD proceed with a final rule, or is the Proposed Rule a Groundhog Day scenario with DoD further delaying final implementation of the CMMC Program?

Continue Reading DoD’s Proposed CMMC Rule: Groundhog Day… or a Final Rule in the Works?

Effective July 21, 2023, DHS is operating under new rules for government contractors on safeguarding Controlled Unclassified Information (CUI) and reporting cyber incidents. In this Feature Comment for The Government Contractor, Alex Major describes how government contractors can best navigate DHS’s wide-reaching cybersecurity and data privacy requirements.

READ THE ARTICLE

Like most businesses, government contractors are in the customer service field and have been conditioned to operate by the old adage that the “The customer is always right.” After all, the customer pays the bills, right? As a general matter, this is true. Uncle Sam is responsible for paying the bills submitted by contractors and—most of the time—payment arrives without issue. That said, there are circumstances in which the government refuses to pay for work performed. One of the more common reasons for such nonpayment is the government’s contention that the work at issue was “not authorized” under the operative contract, notwithstanding the fact that the contracting officer’s representative (COR) was well aware of the work being performed. There are, in fact, many decades of decisional law emanating from courts and boards of contract appeals relating to the nuances of this precise issue. This means that an untold (but stratospherically high) number of frustrated contractors have suffered very expensive battle scars trying to litigate their way to payment by convincing judges that the work performed actually was authorized by the appropriate government personnel. A recent publication by the Department of Defense (DoD) provides contractors with an important reminder as to how to avoid this costly fate.
Continue Reading “Respect My Authority!”—An Important Reminder as DoD Issues an Updated Guidebook for Contracting Officer Representatives

Unless you’ve been living under a rock or on a self-sustaining deserted island, the chances are high that you have become quite familiar with the term “inflation” (i.e., the rising costs of goods and services) over the past few years. Indeed, everything (from gasoline to gumballs and milk to movie tickets) appears to be more expensive as of late. Unfortunately, government contractors are not immune from this current economic reality. As most of us know all too well, many contracts that were negotiated and priced over the past 18 to 24 months are simply more expensive to perform now than was reasonably anticipated when bids were prepared.

In recognition of these soaring prices, the Department of Defense (DoD) issued a May 25, 2022, Memorandum titled “Guidance on Inflation and Economic Price Adjustments,” the purpose of which is to assist contracting officers (COs) in (i) navigating the impacts of inflation on existing contracts and (ii) managing downstream inflation risks on prospective contracts. Here are the key takeaways and our suggested courses of action to best protect your company’s bottom line:Continue Reading DoD Braces for Inflation: Guidance for Contractors Battling Rising Costs

For just shy of a decade, the Defense Industrial Base (DIB) has had to operate under rules dictating the safeguarding of Controlled Unclassified Information, along with a strict 72-hour notification requirement if/when/should a “cyber incident” occur. For the uninitiated, these are the requirements found in the Department of Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012. And for a large swath of government contractors, these requirements have been more bane than benefit, as many have struggled to meet the DFARS’ stringent requirements.Continue Reading Critical Infrastructure Industry Drafted: Welcome to the Cyber War

The Cybersecurity Maturity Model Certification version 2.0 (CMMC 2.0) is here! Like a song you’ve heard before, the revised standards are a throwback but no less significant change to the standards that have evolved over the past three and a half years. McCarter & English Government Contracts and Global Trade co-leaders Alex Major and Franklin Turner detail the changes coming to federal contractors in a Feature Comment for Thomson Reuters’ The Government Contractor. Set against the recent Beatles documentary, the comment examines the impact of the Department of Defense’s most recent effort while detailing what contractors need to do before its new standards go into effect.
Continue Reading Get Back: DOD Retreats While Revealing Plans for CMMC 2.0

On May 12, 2021, the Biden administration unveiled a rather expansive executive order intent on “Improving the Nation’s Cybersecurity.” The lengthy and sweeping order is a comprehensive national cybersecurity overhaul. In addition to requiring significant improvements to the cybersecurity posture of the Federal Civilian Executive Branch (FCEB) agencies, the order also prescribes:

Click to read

The Department of Defense (DoD) has finalized regulations prohibiting the use of telecommunications equipment or services from Chinese entities or from entities that are owned or controlled by either the People’s Republic of China or the Russian Federation. The Final Rule, which went into effect on Friday, January 15, 2021, prohibits the DoD from buying or using banned telecommunications equipment and services that are a “substantial or essential component of any system” or that constitute a “critical technology.”
Continue Reading Changes to DoD Regulations Banning Chinese Telecommunications Equipment and Services Offer Potential Opportunities for Contractors