Podcast - FOCI Mitigation: SSAs, SCAs and Proxy Agreements
Podcast - Discussing a DOJ Lawsuit Under the Civil-Fraud Initiative
Defense Dynamics: Navigating the Post-Election Landscape for the National Security Sector
DE Talk | If It’s Not in Writing, It Never Happened: Applicant Tracking & Recordkeeping Strategies to Ensure OFCCP Compliance
Podcast - Cybersecurity Roundup: Analyzing New and Proposed Rules for Contractors
Understanding FOCI Mitigation
Work This Way: A Labor & Employment Law Podcast - Episode 28: Construction Compliance with Joan Moore and Mim Munzel of The Arbor Consulting Group
False Claims Act Insights - If Everything Matters, Nothing Does: Parsing Materiality in FCA Disputes
Build America Buy America What is it? How to qualify.
Podcast - Navigating M&A Due Diligence: Safeguarding Security Clearances
Work This Way: A Labor & Employment Law Podcast - Episode 26: Compensation Compliance with Joan Moore and Mim Munzel of The Arbor Consulting Group
DE Under 3: Court Held That Workday Was an “Agent” to Employers Licensing its AI Applicant Screening Tools
An In-Depth Overview of the DCSA
Sustainable Procurement: A Closer Look at the New Federal Acquisition Regulation (FAR)
DE Under 3: Retirement of “Chevron Doctrine” Exposed Vulnerability of OFCCP’s Overreaching Interpretations of Some of its Rules
Legal Alert | Reign It In: Federal Court Enjoins DOL's Expansion of Davis-Bacon Coverage
Common Scenarios Triggering False Claims Act Violations, Part 3: Claims and Investigations
DE Under 3: OFCCP Must Shut Down its Administrative Court Prosecutions as a Result of SCOTUS’ SEC Jury Trial Case Decision
Common Scenarios Triggering False Claims Act Violations, Part 1: Gov. Contracts and Cybersecurity
DE Under 3: OFCCP’s New Revisions & Additions to its Construction Contractor Compliance Audit Tools
On October 22, 2024, the Department of Justice (“DOJ”) announced that Pennsylvania State University (“Penn State”) has agreed to pay $1,250,000 to settle a False Claims Act (“FCA”) case brought against the University...more
Designed for busy in-house counsel and compliance professionals, this newsletter seeks to bring you up to speed on key federal and state False Claims Act (FCA) developments, with links to primary resources. Each quarter, we...more
The CMMC program is designed to ensure that federal contract information (“FCI”) and Controlled Unclassified Information (“CUI”) are sufficiently protected by government contractors. For example, the CMMC program requires...more
Merger and acquisition (M&A) activity is often the lifeblood of corporate growth. While whole treatises can be, and have been, written on cybersecurity and legal challenges during M&A activity, the following are a few key...more
The Department of Justice (DOJ) secured another win for its Civil Cyber-Fraud Initiative last week when it resolved a False Claims Act (FCA) action[1] alleging Pennsylvania State University (Penn State) failed to comply with...more
Following a multi-year rollout process, the U.S. Department of Defense published a final rule on October 15, 2024, establishing its Cybersecurity Maturity Model Certification Program to protect sensitive unclassified...more
As required under the October 30, 2023, Executive Order 14110 on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (AI), the White House issued a memorandum providing further direction on...more
On October 11, 2024, the U.S. Department of Defense (DoD) at long last published a final rule establishing the Cybersecurity Maturity Model Certification (CMMC) Program (the Final Rule)...more
On October 11, 2024, the United States Department of Defense (DOD) published a final rule implementing its Cybersecurity Maturity Model Certification (CMMC) program, which is designed to verify that defense contractors are...more
Cybersecurity requirements continue to proliferate, both globally and within the US. Whether because of these new requirements, or because of the escalating threat environment, companies should urgently consider assessing...more
On October 15, 2024, the Department of Defense (“DoD”) published the final version of its rule implementing the Cybersecurity Maturity Model Certification (“CMMC”) Program under Title 32 of the Code of Federal Regulations...more
After a nearly five-year rulemaking process, the U.S. Department of Defense (DoD) published the Final Cybersecurity Maturity Model Certification 2.0 (CMMC) program rule in the Federal Register on Oct. 15, 2024, codified at 32...more
The U.S. Department of Defense (DOD) has published a Final Rule to implement the Cybersecurity Maturity Model Certification (CMMC) program, which establishes minimum cybersecurity requirements for nearly all DOD contracts....more
Over the course of the past few years, gallons of ink have been spilled addressing the seemingly ever-pending US Department of Defense’s (DoD) Cybersecurity Maturity Model Certification (CMMC) Program. After keeping us...more
On October 15, 2024, the Department of Defense (DoD) published the long-anticipated first part of its final rule (the Final Rule) for the Cybersecurity Maturity Model Certification (CMMC) program. After the implementation of...more
Fresh from a cybersecurity briefing I provided to many of Sherman & Howard’s clients and industry partners, I returned to my desk to learn the Department of Defense (DoD) recently issued its final rule on the Cybersecurity...more
On Tuesday, October 15, 2024, the U.S. Department of Defense (“DOD”) issued its final rule for its much anticipated Cybersecurity Maturity Model Certification (“CMMC”) program. The CMMC program will eventually require one of...more
The United States Department of Defense (DoD) finalized a new rule implementing the Cybersecurity Maturity Model Certification (CMMC) program. The program includes a minimum cybersecurity requirement for almost all DoD...more
Office of Personnel Management (OPM) Proposed Rule: Prevailing Rate Systems, Change in Criteria for Defining Appropriated Fund Federal Wage System (FWS) Wage Areas - On October 11, OPM published a proposed rule and...more
The U.S. Department of Defense (DOD) has long questioned whether contractors and their supply chains have been fully compliant with existing cybersecurity requirements aimed at protecting Controlled Unclassified Information...more
The US Department of Defense (DoD) published a final rule codifying the Cybersecurity Maturity Model Certification (CMMC) Program. The final CMMC rule will apply to all DoD contractors and subcontractors that will process,...more
In this episode of "Regulatory Phishing," government contracts and litigation attorneys Eric Crusius and Kelsey Hayes discuss a U.S. Department of Justice (DOJ) lawsuit that was brought under the Civil Cyber-Fraud Initiative....more
On October 15, 2024, the Department of Defense (“DoD”) published the final version of its Cybersecurity Maturity Model Certification (“CMMC”) rule in Title 32 of the Code of Federal Regulations (the “Final Rule”). (Reminder,...more
On October 11, 2024, the Department of Defense (“DoD”) issued the first part of its final rule establishing the Cybersecurity Maturity Model Certification (“CMMC”) program. As expected, the final rule requires companies...more
WHAT: On October 15, 2024, the U.S. Department of Defense (DOD) will publish the final CMMC 2.0 Program rule. DOD’s final rule outlines the mechanisms that DOD will use to prescribe cybersecurity standards for safeguarding...more