Compliance

Subscribe to Compliance via RSS

Government procurement is essential to modern governance. But when firms rig bids, allocate markets, or otherwise collude, taxpayers pay more, honest competitors are shut out, and trust erodes. In recent months, US agencies have continued to emphasize the importance of fair competition in government procurement, scrutinizing regulations that may favor incumbents or unfairly limit competition and expanding whistleblower options.

Continue Reading Rigging the Game? Antitrust Risks in the Public Contracting Arena

On July 31, 2025, the Court of Federal Claims (COFC) issued its decision in The DaVinci Company v. United States. The case is noteworthy for contractors grappling with geographical supply chain concerns because it elucidates the extent to which two cornerstone country-of-origin procurement statutes—the Buy American Act (BAA) and the Trade Agreements Act (TAA)—can be misunderstood and misapplied by the government.

Continue Reading Making Hay of the Interplay Between the TAA and BAA—COFC Sustains Protest Against the VA’s Improper Sourcing of a Critical Pharmaceutical

Ding ding.” – Apollo Creed,
Rocky III

September 30. All (most?) federal years end the same way, at least on paper—like a prizefight, with the clock ticking down; an agitated, uncertain crowd; a lot of money on the table; and a ref capable of stopping the match at any moment. This year will be at once both no different and a completely different beast. With ever-recent uncertainty surrounding appropriations, continuing-resolution (CR) risk, evolving Federal Acquisition Regulation (FAR) language, the tightening screws of cyber attestations, industry supply-chain and acquisition changes, and grant closeouts that always take longer than you’d think, September is not a month for contractor improvisation. It’s a month when a dedicated corner team, a game plan, and crisp execution all are paramount.

Continue Reading And in This Corner … the Sweet Science of Federal Contracting’s Year-End

Earlier this year, we addressed a growing sense of confusion and unease among federal contractors relating to shifting diversity, equity, and inclusion (DEI) standards. Specifically, awardees had to take stock of the Department of Justice’s (DOJ) newly launched Civil Rights Fraud Initiative. DOJ explained that it intended to pursue False Claims Act (FCA) cases against “any recipient of federal funds that knowingly violates federal civil rights law,” with an emphasis on unlawful DEI workplace programs. But given this year’s abrupt shift regarding DEI standards, contractors were left to guess which conduct could put them in DOJ’s crosshairs. On July 29, DOJ elaborated on what it considers “unlawful discrimination,” issuing Guidance for Recipients of Federal Funding Regarding Unlawful Discrimination (“Guidance”) to all federal agencies. The Guidance outlines what DOJ deems “best practices” so that any organization that receives federal financial assistance—e.g., universities, local governments, and nonprofit organizations—can take practical steps “to minimize the risk of violations.”

Continue Reading New “Unlawful Discrimination” Guidance from DOJ Underscores Risks to Federal Grant Recipients

On June 6, 2025, President Trump issued a new executive order, “Sustaining Select Efforts to Strengthen the Nation’s Cybersecurity and Amending Executive Order 13694 and Executive Order 14144” (EO), signaling the construction of a fortified cyber defense across federal operations. This directive updates the nation’s digital stronghold, modernizing risk management, defending against quantum and artificial intelligence (AI) threats, and drawing sharper lines in the battle against foreign cyber adversaries. For technology companies and federal suppliers, this is a clarion call to reinforce their digital walls and sharpen their defenses. Agencies will soon build these secure-by-design principles into every contract and procurement decision. In this era of fortress-building, failing to meet these standards not only will leave your gates unguarded but also could bar you from the entire federal marketplace. The EO may read like ordinary policy, but don’t be misled: It’s a direct command for companies to strengthen their cyber defenses or be locked out of federal opportunities altogether.

Continue Reading Building the Cyber Fortress: New Cybersecurity Executive Order Targets Quantum, AI, and Supply Chain Security

Beware the Jabberwock, my son! The jaws that bite! The claws that catch!”

– Lewis Carroll: “Jabberwocky,” Through the Looking-Glass, and What Alice Found There (1872)

There is a growing sense of confusion and unease among many federal contractors and grant recipients in these early days of the second Trump administration. In a time when some agencies face dislocation and downsizing (or, as with USAID, effective disbandment), contractors may feel like Alice stepping through the Looking Glass into a world strangely inverted from the one they knew. This shift is especially evident in the administration’s rejection of seemingly all diversity, equity, and inclusion (DEI) policies—long used to prevent discrimination, comply with civil rights laws, and foster inclusive environments in the American workforce.

Continue Reading Through the Looking Glass: Shifting DEI Standards Expose Contractors to False Claims Act Risk

On April 15, 2025, the Department of Defense (DoD) released official guidance on Organizationally Defined Parameters (ODPs) appearing in the newly published NIST SP 800-171 Revision 3. At the same time, the DoD reaffirmed that contractors must continue complying with Revision 2 thanks to a previously issued class deviation. What does this mean in plain terms? The DoD is slowly pulling back the curtain on the next major shift in cybersecurity compliance. Still, the full prestige hasn’t happened yet.

Continue Reading The “Prestige”: DoD Unveils NIST SP 800-171 Revision 3, Organizationally Defined Parameters

Amid a flurry of executive orders starting his second administration, President Donald Trump issued an order entitled “Ending Illegal Discrimination and Restoring Merit-Based Opportunity” (the “Order”) on January 21, 2025. The Order will have an immediate impact on federal contractors and subcontractors currently subject to the affirmative action obligations concerning women and minorities under now-revoked Executive Order 11246 dated September 24, 1965 (and the subsequent executive orders that refined these obligations). It also signals a significant change in the focus of federal enforcement of equal opportunity laws. The Order does NOT, however, change any of the substantive federal law regarding employment discrimination. Under Title VII of the Civil Rights Act of 1964, it remains illegal for employers to make employment decisions on the basis of race, color, religion, sex, or national origin. Other federal and state statutes prohibit making employment decisions on various other bases, including age, disability, genetic make-up, etc.; none of these substantive laws have been changed. So what has changed?

Continue Reading DEI, Discrimination, Affirmative Action and More: How the Recent Executive Order Impacts Private Employers

The U.S. Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) Program will become operational at some point in fiscal year 2025. In October, the DOD issued a Final Rule to address evolving cybersecurity requirements and cyber threats while defining the security controls that DOD intends defense contractors and subcontractors to implement. The program will require