This week, Congress passed its $874.2 billion defense policy bill, better known as the National Defense Authorization Act (NDAA). This highly anticipated bill sets the funding and policy agenda for the Department of Defense (DoD) for Fiscal Year (FY) 2024. The DoD is currently operating under a stopgap funding bill, barring the agency from starting most new initiatives or moving forward with many acquisitions, so once signed by President Biden, this bill will enact a series of significant changes within the DoD.

Information Technology (IT) is a crucial part of our daily lives, no matter what industry we are in. Nearly all communication depends on it, whether it be casual such as chatting with friends, professional at work, or confidential. It holds up our websites, databases, and entire programs and structures that we depend on every day. This is not news to anyone, and especially not to IT contractors.

In October 2023, the 6th generation of NASA’s System for Enterprise-Wide Procurement (SEWP) draft was released for Q&A. This 100+ page draft Request for Proposal (RFP) provided industry with an abundance of information on how to best prepare for the upcoming opportunity. Let's dive into this draft and point out some key takeaways for you to consider.

As technology advances, the federal government focuses on adding regulations that improve the security of network systems. In early October, the Federal Register published two proposed cybersecurity Federal Acquisition Regulation (FAR) rules to partially implement Executive Order 14028, “Improving the Nation’s Cybersecurity.” In this blog we will discuss Executive Order (EO) 14028 along with the two proposed FAR rules and how it can impact you as a government contactor.

If you have a government contract such as the GSA Multiple Award Schedule (MAS), or are thinking about getting one, good cyber hygiene is key. Of course, every company wants to avoid cyber attacks and hacking, but it’s important when you are selling to the federal government to have certain practices in place to proactively safeguard your network.

The Department of Defense (DoD) and the Office of Management and Budget (OMB) are expecting the release of a proposed Cybersecurity Maturity Model Certification (CMMC) rule in September 2023. This rule was originally expected earlier this summer, but once released will set the framework for CMMC. Since this rule has been highly anticipated, let’s cover what you can expect over the next few months and how you can prepare for the implementation of CMMC.