Regulations

Subscribe to Regulations via RSS

Here we are again. Large swaths of the federal government have been closed since December 22 because Congress and the president cannot agree on legislation to fund the government. Nearly a million federal employees are not receiving their paychecks. Even larger numbers of government contractors are – as is often the case – left squarely at the bottom of the hill, dodging the boulders of political mismanagement that are raining down in a landslide of “stop-work” orders. For example, as has been reported, the Department of Homeland Security’s Federal Emergency Management Agency (FEMA) took affirmative steps to publicize and issue a “blanket” stop-work order on December 26 – the day after Christmas – giving many affected contractors a post-holiday cocktail of uncertainty and dread. Other agencies have followed suit, with the Departments of Justice, Agriculture, Commerce, Housing and Urban Development, Interior, State, Transportation, and Treasury issuing such orders over the past few weeks.
Continue Reading Contractors in the Crosshairs – Weathering the 2019 Government Shutdown

The Demon: What an excellent day for an exorcism.
Father Karras: You would like that?
The Demon: Intensely.

Honestly, it was challenging finding an all-audiences quote from William Peter Blatty’s “The Exorcist,” but we believe that this quote is exactly what federal contractors need to know. Today is indeed an excellent day for an information system exorcism and, unlike Father Karras, federal contractors know the name of that which they must purge: Kaspersky Lab.Continue Reading The Russian Exorcism of US Gov’t Contracts

At this point, even casual observers of the news likely have heard of Moscow-based Kaspersky Lab. In the wake of reported connections to the Kremlin and Russian intelligence entities, the cybersecurity company was famously banned as a source of supply to the United States Government by Section 1634 of the 2018 National Defense Authorization Act (“NDAA”). Effective October 1, 2018, the NDAA forbids every “department, agency, organization, or other element of the Federal Government” from using “any hardware, software, or services developed or provided, in whole or in part” by (i) Kaspersky and any corporate successors, (ii) any entities controlled by or under common control with Kaspersky and (iii) any entity in which Kaspersky has majority ownership.
Continue Reading The FAR Takes Aim at Russia’s Kaspersky Lab: What Every Contractor Must Know

Alex Major is a contributing author to the Nuix 2018 Black Report: Decoding the Minds of Hackers, a unique report that engages professional hackers, penetration testers, and incident responders to understand the security threat landscape companies face. Alex, a former intelligence officer, focuses his chapter on why companies need to properly select and structure their

The House version of the 2018 National Defense Authorization Act (“NDAA”) (passed July 14, 2017) includes key provisions that would radically change the way the Government purchases certain commercial items, and it may result in the extinction of large parts of the Federal Supply Schedules as we know them. Section 801 of the NDAA promotes Government wide use of online commercial marketplaces (“online marketplaces”) such as Amazon, Staples, and Grainger for the acquisition of certain commercial off-the shelf (“COTS”) items, defined as “commercial products” in the proposed legislation. If enacted, the NDAA would be a revolutionary development in the way the Government buys many of its products, allowing agencies to leapfrog over competitive bidding requirements and numerous mandatory clauses now included in Government contracts for commercial items.
Continue Reading House Wants Uncle Sam to Purchase COTS Items From Amazon and Other Online Sellers

This article focuses on contractor licenses that grant “Restricted Rights” in “Noncommercial Software” to the federal Government under Defense Federal Acquisition Regulation Supplement (“DFARS”) 252.227-7014.  DFARS 252.227-7014 only applies to “Noncommercial Computer Software,” meaning software that is licensed to or developed for the Government, but that is not also licensed to the public.  In contrast to the commercial world, where software licensors generally set the terms under which they wish to license their products, DFARS 252.227-7014 dictates such terms, and codifies required license grants for software developed for the U.S. Department of Defense (“DoD”).  Under DFARS 252.227-7014, even if a licensor develops Noncommercial Software at private expense, the licensor must at least grant Restricted Rights to the Government — although title and ownership of the software always remain with the contractor licensor.
Continue Reading Restricted Rights Under DFARS 252.227-7014: Practitioner Advice for Avoiding DoD Licensing Pitfalls

Contractor past performance evaluations are important factors in source selection decisions under Parts 8 and 15 of the Federal Acquisition Regulation (“FAR”), and they can easily make or break a contractor’s federal customer base. Especially vulnerable are contractors competing in Lowest Price Technically Acceptable (“LPTA”) procurements, where a bad past performance rating can make contractors ineligible due to an “unacceptable” technical rating even though they may offer the lowest price. The submission by Government contracting officials of a contractor’s performance evaluation to the Contractor Performance Assessment Reporting System (“CPARS”) is required in most instances; however, the contractor’s remedies for correcting poor performance evaluations due to mistakes and material omissions by the evaluator are limited in both time and scope. And as the DoD’s Inspector General (“IG”) has repeatedly pointed out, most recently in its May 9, 2017 report, Summary of Audits on Assessing Contractor Performance (noting a large percentage of DoD performance assessment reports are late and not prepared correctly and accurately), mistakes often happen. Contractors looking to sustain their business in the federal marketplace need to be properly armed with the weapons available to challenge poor performance evaluations when the agency gets it wrong.
Continue Reading Sparring with CPARS: Some Tips on Avoiding and Curing Bad Past Performance Evaluations That Can Haunt and Jeopardize a Government Contractor’s Business for Years

Following up on his repeated promises that the government will buy American and hire American, President Trump signed a Presidential Executive Order on Buy American and Hire American (the “Order”) on Tuesday, April 18, 2017, directing executive agencies to enhance acquisition preferences for domestic products and labor under federal contracts and federal grants. Federal contractors should note that the Order serves only as a blueprint for the administration’s intentions and imposes no immediate requirements. Those will follow — but in what form and to what degree, we can only guess. Contractors should prepare for those changes and be assured that – with respect to the Order’s impact on supply chains and contractor purchasing systems – the devil will indeed be in the details.
Continue Reading The Buy American–Hire American Executive Order: There Will Be Devils in the Details When Buying American

In the course of responding to a Request for Proposals (“RFP”) or Request for Quotations (“RFQ”), have you ever encountered technical specifications that you regard as unreasonable? Have you ever wondered why the Government included those specifications in the first place and, more generally, whether those specifications are even necessary to fulfill the requirements giving rise to the acquisition? If your company is like most out there, the answer to these questions is a resounding “yes!” What to do next, you ask? A recent case before the Government Accountability Office (“GAO”) is instructive.
Continue Reading Recent GAO Decision Gives Ammunition To Protesters Challenging Technical Specifications

It’s surprising how often the simplest phrases can provide the most salient advice. The 6 P’s,for example: Proper prior planning prevents poor performance. While the phrase may be a bit of a tortured alliteration, the truth and simplicity of its sentiment can’t be denied: When you want a good outcome, you have to think it through. Simple.
Continue Reading Your Biggest Cybersecurity Threat: Failing to Plan