BLOG: DoD's Upcoming Cybersecurity Maturity Model Certification (CMMC): Still on Target?

January 10, 2020
By Jon Williams and Anna R. Wright
PilieroMazza has been blogging a lot over the past year about the Department of Defense's (DoD) highly anticipated CMMC. And there has been a lot to say, from the early stages of CMMC as a new "overarching standard," to its first public draft release, through its first major streamlining, and finally to its latest public draft release in early December 2019. The pace of developments is expected to increase in 2020 as DoD releases a compliance checklist, finalizes the certification standards, and begins accrediting third parties that will ultimately issue CMMCs to contractors. With CMMC expected to become a requirement of certain DoD contracts by the end of this fiscal year, CMMC truly is a game-changer for any government contractor working directly for DoD or in the DoD supply chain.
[READ MORE]

BLOG: The Implications of SBA's Proposed Rule Changes for Tribally Owned 8(a) Businesses

January 8, 2020
By Peter B. Ford and Emily J. Rouleau
SBA recently published a proposed rule that would merge its mentor-protégé programs and amend many of its rules governing the 8(a) program. Our firm's managing partner, Pam Mazza, recently explained the rule's significant implications for the government contracting community. In particular, SBA's proposed rule would make a number of changes to the 8(a) program and regulations applicable to tribally owned 8(a) businesses. Pam and Peter will be attending a tribal consultation meeting in Oklahoma City on January 16, 2020 where tribes and ANCs can weigh in on the changes SBA is proposing. In advance, we have highlighted a few of the proposed changes that may benefit these firms.
[READ MORE]

BLOG: Open-Source Software in Federal Procurements: The Good, the Bad, and the Ugly, Part 1 – The Good

January 2, 2020
By Isaias "Cy" Alba IV
Open-source code is all the rage. With developers at Fortune 500 companies and hobbyists alike using it to make better products and cut development costs, it is ubiquitous in the commercial market, and government contractors are catching the buzz. Faced with ever-evolving software regulations, though, they need facts before dealing with a federal buyer. In this short blog series, we will walk through the key benefits, drawbacks, and risks associated with use of open-source code in government contracting, especially at the federal level. Indeed, when it comes to the use of open-source software, all contractors should be aware of the "good," the "bad," and the "ugly."
[READ MORE]

BLOG: Government Agencies Release 2020 Regulatory Agendas

January 2, 2020
By Timothy F. Valley
As 2019 comes to a close, the government is setting its short- and long-term goals for 2020. On December 26, 2019, a number of federal agencies released their regulatory agendas for the upcoming year, including the Department of Defense (DoD), the Small Business Administration (SBA), and the Federal Acquisition Regulation (FAR) Council (which consists of DoD, the National Aeronautics and Space Administration (NASA), and the General Services Administration (GSA)). Many regulatory agenda items could impact government contractors and small businesses, so keep these rulemakings in mind as you head into 2020. Here are our highlights.
[READ MORE]

BLOG: Cybersecurity Maturity Model Certification (CMMC): The Final Countdown

December 18, 2019
By David T. Shafer and Anna R. Wright
PilieroMazza recently wrote about the Department of Defense's (DoD) release of revision (rev.) 0.6 of its Cybersecurity Maturity Model Certification (CMMC), which only addressed certification Levels 1–3. DoD has now released rev. 0.7. All DoD contractors will be required to obtain CMMC certification in the coming months to show their IT systems' capabilities with respect to protecting DoD sensitive information. Rev. 0.7 gives updates at all Levels. Additionally, rev. 0.7 contains new discussion and clarifications for Levels 1–3 and for the application of maturity levels to different capability domains. Below, we decipher primary concerns for DoD contractors.
[READ MORE]
Please fill following information to download presentation