On July 14, 2020, the Federal Acquisition Regulatory (FAR) Council issued an interim final rule intended to clarify the scope and application of the requirements set forth in Section 889(a)(1)(B) of the FY2019 National Defense Authorization Act (FY19 NDAA). The rule’s release comes after months of eager anticipation by—and almost apocalyptic warnings from—a wide varietyRead More
Companies doing business in the United States are required to act honestly in their business dealings. Companies that have affirmative compliance and reporting requirements may suffer significant penalties if they are determined to violate applicable laws, rules and regulations. The U.S Sentencing Guidelines (USSG) provide for reduced sentencing for companies that have an effective complianceRead More
Last month we reported on the Department of Defense’s (DoD’s) issuance of Version 0.6 of its draft Cybersecurity Maturity Model Certification (CMMC) standard. That draft included DoD updates and revisions to CMMC’s domains, capabilities and practices for Levels 1 through 3. It deferred revisions to those parts of CMMC covering Levels 4 and 5. OnRead More