Sequels are rarely better than the films that precede them, and yet, sometimes a story is just too compelling to be limited to just one film. At the tail end of a summer full of Hollywood sequels, the Department of Defense (DoD) released a long-gestating sequel of its own. On August 15, 2024, DoD published a Proposed Rule that would revise the DoD Federal Acquisition Regulation Supplement (DFARS) to implement Cybersecurity Maturity Model Certification (CMMC) 2.0 into DoD contracts in the near(ish) future. This follows a December 2023 Proposed Rule, discussed here, establishing the CMMC 2.0 requirements in broad strokes. In this latest Proposed Rule, DoD proposes several changes to the DFARS that would do the following:Continue Reading CMMC and DFARS 252.204-7021—Is the Sequel Better than the Original?

Cyber incidents involving critical infrastructure pose a serious risk to the US. In March 2024, the Environmental Protection Agency and the National Security Advisor warned state governors about potential attacks on drinking water and wastewater facilities by specific Iran- and China-aligned hackers. The following month (on April 4, 2024), in an attempt to prepare for such attacks and otherwise improve the federal government’s ability to collect and analyze data related to cyber incidents on critical infrastructure, the Cybersecurity and Infrastructure Security Agency (CISA) issued a proposed rule to implement cyber incident reporting requirements under the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA). Enacted in an omnibus appropriation, CIRCIA directed CISA to issue rulemaking requiring the reporting of cyber incidents or the payment of ransoms in response to cyberattacks affecting critical infrastructure.  Continue Reading CISA’s CIRCIA Proposed Rule: Another Player Enters the Reporting Regime

What do you think is going to be scarier—artificial intelligence (AI) or the government’s effort to regulate AI? On October 30, 2023, the White House issued Executive Order (E.O.) 14410, Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence. As the federal government’s latest foray into harnessing AI, this E.O.—like those before it, generally—recognizes that AI offers extraordinary potential and promise, provided that it is harnessed responsibly to prevent the exacerbation of societal harms. Since E.O. 14410, there has been a flurry of activity in the federal government, including guidance and policies providing an indication of how agencies can/should/will harness AI to support agency objectives. While we are far from a situation similar to Skynet from the Terminator franchise or HAL 9000 from 2001: A Space Odyssey, the government’s accelerated activity to reap AI’s potential benefits far outpaces the provision of actionable guidance so contractors can understand and adapt to what will be required in offering AI products and services to the government. So let’s open the pod bay doors and explore…Continue Reading Executive Order 14410: An Artificial Intelligence Odyssey

In 2006, the documentary An Inconvenient Truth chronicled former Vice President Al Gore’s efforts to educate the public on the consequences of climate change. In the sixteen years since the Academy Award-winning film was released, public interest in the impact that greenhouse gas (GHG) emissions have had, are having, and will have on our planet has increased exponentially. Most recently, at the 27th U.N. Climate Conference (COP27), countries from around the globe came together to discuss the implementation of battle plans to combat climate change. One such plan, which was discussed at COP 27 by President Biden, is a new Proposed Rule that would require “significant” and “major” federal contractors to disclose their GHG emissions and climate-related financial risk as well as set science-based targets to reduce their GHG emissions. If and when the Proposed Rule is finalized, it will have seismic implications for contractors, in that it ties contractor responsibility (i.e., a contractor’s ability to receive federal awards) to compliance with these requirements.
Continue Reading An Inconvenient Requirement: New Proposed Rule Would Require Federal Contractors to Disclose Greenhouse Gas Emissions

Regardless of whether they were eagerly anticipated or begrudgingly unavoidable, the changes promised to the Buy American Act (BAA) early last year have at last arrived, or at least are quickly approaching. On March 4, 2022, the Federal Acquisition Regulation (FAR) Council released its long-anticipated Final Rule implementing important revisions to the BAA provisions of the FAR and incorporating the requirements outlined in President Biden’s January 28, 2021 executive order, “Ensuring the Future Is Made in All of America by All of America’s Workers.” Although the Final Rule, for the most part, conforms with the Proposed Rule issued in July 2021 (which we previously discussed here), the most notable aspect may be that the Final Rule’s effective date was delayed until October 25, 2022. This generous gap provides contractors with roughly 235 days to fortify their compliance efforts and ensure that necessary policies and procedures are in place to meet the necessary supply chain and regulatory changes imposed by the Final Rule — well  in advance of Halloween.
Continue Reading With Just a Little Ado: Significant Buy American Changes Are Coming Before Halloween

This article appeared in Law360

The Safer Federal Workforce Task Force issued on Sept. 24 its guidance for federal contractors and subcontractors[[1] as required by President Joe Biden’s Sept. 9 executive order on ensuring adequate COVID-19 safety protocols for federal contractors.[2] The guidance was approved by the Office of Management and Budget on the same day.[3]

The guidance contains three key provisions:

  • Mandatory vaccination of covered contractor employees who are not legally entitled to accommodation;
  • Masking and physical distancing while in covered contractor workplaces in accordance with Centers for Disease Control and Prevention guidelines; and
  • The designation by each covered contractor of a point person or persons to coordinate COVID-19 workplace safety efforts at covered contractor workplaces.[4]

Continue Reading Broad Categories of Employees of Federal Contractors Now Required to Be Fully Vaccinated by December 8–Law360

The Federal Acquisition Regulation (FAR) Council has returned from an extended vacation to publish a final rule to align the FAR with similar subcontracting regulations implemented by the Small Business Administration more than a half decade ago. McCarter & English Government Contracts and Global Trade co-leaders Franklin Turner and Alex Major and Senior Associates Cara

Continue Reading What’s Next for Federal Contractors and Mandatory COVID-19 Safety Protocols

A major pillar of President Biden’s campaign was strengthening the Buy American requirements in procurement law, promising both before and after the election that “[n]o government contracts will be given to companies that don’t make their products here in America.” Five days into office, the President issued an Executive Order designed to bring that promise closer to fruition. As we wrote here, the January 25, 2021 Executive Order directed both dramatic changes to domestic preference regulations and increased enforcement of existing requirements through a variety of means. Now, seven months later, amendments to the Federal Acquisition Regulation (FAR) are being proposed by the Department of Defense (DoD), General Services Administration, and National Aeronautics and Space Administration—collectively, the Federal Acquisition Regulatory (FAR) Council—to implement, at least in part, President Biden’s Executive Order (Proposed Rule).
Continue Reading Enhanced Buy American Requirements Coming Soon; Proposed Rule Foretells Big Changes

After 15 months of quarantines, restrictions, and mandatory home schooling, summer 2021 is luring with escape and excitement across the country.  We all hope for beach days and reunions with loved ones as we (hopefully) paddle toward normalcy once again. However, before setting up the “out-of-office” auto-replies and heading for the sand and surf, Government contractors interested in the implications of the Biden Administration’s January 25, 2021 Executive Order on Ensuring the Future Is Made in All of America by All of America’s Workers (EO) will want to take note of a June 11, 2021 Memorandum from the Office of Management and Budget on Increasing Opportunities for Domestic Sourcing and Reducing the Need for Waivers from Made in America Laws (Memorandum). This Memorandum outlines the wave of changes the Made In America Office (MIAO) is poised to make over the summer of 2021 as it begins to implement the mandates of the EO.
Continue Reading Catching Waves: OMB Issues New Implementation Guidance for Biden Administration Buy American Executive Order