U.S. Department of Defense (DOD)

Department of Defense Suspends the CMMC Pilot Program And CMMC Requirements In DoD Solicitations Pending Major Changes For CMMC 2.0

November 8, 2021 By Amy Mushahwar and Jon Knight

The Department of Defense (DoD) recently announced it will be revamping the nascent Cybersecurity Maturity Model Certification (CMMC) program pending two separate rulemaking processes. As detailed below, the DoD will be updating “the program structure and the requirements to streamline and improve implementation of the CMMC program.” We will be monitoring the rulemaking process for more details as they are known. However, the primary short-term takeaway is that until the rulemaking process is complete, the DoD is suspending the CMMC Pilot Program and will not include CMMC requirements [...]Read more

Additional GSA Webinar Guidance for Section 889 Part B Implementation Delayed to September 10, 2020

August 10, 2020 By Alston Government Contracts Team

The Alston & Bird Government Contracts team has been closely following developments in the implementation of Section 889 of the Fiscal Year 2019 National Defense Authorization Act (“NDAA”), and particularly Section 889 Part B, which broadly prohibits the government from “entering into a contract with” an entity that “uses” “covered telecommunications equipment or services.” Our prior blog posts on this topic can be found here and here. On August 6, 2020, the General Services Administration (“GSA”) gave notice that the previously scheduled August 12, 2020 GSA webinar [...]Read more

GSA Provides Additional Guidance on Section 889 Part B Implementation and “Waivers”

July 31, 2020 By Alston Government Contracts Team

On July 30, 2020, General Services Administration’s (“GSA”) Office of Small Business Utilization hosted a webinar on the implementation of Section 889 of the Fiscal Year 2019 National Defense Authorization Act (“NDAA”). The Alston & Bird Government Contracts team has been closely following developments and previously wrote about Section 889 Part B here. The webinar confirmed GSA’s position that Part B of Section 889 applies to every sector, no matter what a company makes or sells, and all systems a government contractor uses—whether in the performance of a government contract [...]Read more

DoD Weighs In As Federal Contractors Search for Guidance on Implementation of Section 889 Part B

July 28, 2020 By Jessica Sharron

To curb the threat of U.S. foreign adversaries gaining access to critical infrastructure and stealing sensitive information, Congress passed Section 889 ("Prohibition on Certain Telecommunications and Video Surveillance Services or Equipment") as part of the Fiscal Year 2019 National Defense Authorization Act (“NDAA”). There are two prohibitions in the statute, Part A and Part B. Part A, which became effective on August 13, 2019, prohibits the government from “buying” certain “covered telecommunications equipment or services.” (NDAA Section 889(a)(1)(A)). Part B, which is slated [...]Read more

Warning: Iranian Cyber Response Possible Against Government Contractors

January 10, 2020 By Alston Government Contracts Team

As a result of heightened tension between the United States and Iran, companies, especially those that do business with the Federal Government and with the Department of Defense in particular, would be well-advised to take immediate steps to confirm and strengthen their cybersecurity measures. Read on for the post from our firm’s Privacy & Cybersecurity Blog discussing how regulators are warning of a possible rise in cyber-attacks. ... After Friday’s announcement of the killing of Major General Qassem Soleimani, a leader of Iran’s Quds Force, several regulators have put industry on [...]Read more