Government Contracts & Investigations

Category: Cyber, Data Security, and Privacy

CMMC Advisory Board – The Good News First

By

The Cybersecurity Maturity Model Certification (CMMC) Advisory Board (CMMC AB) made a major announcement on September 16, 2020, announcing that it has trained an initial group of provisional assessors. As an earlier posting explains, the CMMC establishes cybersecurity controls for certification of government contractors from Level 1, the basic set of controls that all governmentRead More

Topics: Cyber, Data Security, and Privacy

And Still More Guidance Comes Out on Section 889 Implementation

By

The saga of what is prohibited and what is covered by an exception to the National Defense Authorization Act, FY 2019, Section 889 prohibition on the use or delivery of covered telecommunications and video surveillance equipment and services continues. As reported previously, the FAR rule implementing Section 889(a)(1)(B)’s prohibitions was published on July 14, 2020Read More

Topics: Cyber, Data Security, and Privacy, Statutes and Regulations

Another (Minor) Step in the Evolution of Section 889(a)(1)(B) Obligations

By

In the latest development relating to the implementation of Section 889 of the National Defense Authorization Act for FY 2019, a second interim rule was issued on August 27, 2020. We previously reported on the Federal Acquisition Regulation (FAR) Interim Final Rule on Section 889(a)(1)(B)’s aspects of the ban, which applies to government contractors whetherRead More

Topics: Cyber, Data Security, and Privacy, Statutes and Regulations

DNI Apparently Has Granted DoD A Limited Temporary Waiver of Section 889 Implementation

By |

Government contractors have been closely watching developments in the implementation of Section 889 of the National Defense Authorization Act for FY 2019, which bans government contractors’ use and provision of telecommunications and video surveillance products and services from Huawei, ZTE, and other identified Chinese companies. The Administration has previously determined that the equipment and servicesRead More

Topics: Cyber, Data Security, and Privacy, Statutes and Regulations

Wondering Why Government Contractors Need to Take Cybersecurity Seriously – Criminals and Foreign Adversaries Are Trying to Hack You

By

Our blogs and alerts have reported on the increasing legislative and regulatory requirements to promote the security of the U.S. supply chain, including its cybersecurity. In the public sector, these requirements are being imposed to facilitate defense against activities that threaten the operations of the Government, its contractors and their industrial base supply chains, asRead More

Topics: Cyber, Data Security, and Privacy, Supply Chain Risk Management