Photo of Hilary Cairnie

An experienced and sought-after strategist, Hilary Cairnie counsels clients in nearly all types of government contracting matters.

Introduction

The National Defense Authorization Act (NDAA) for 2025 includes a mandate that contractors furnish information and documentation to enable the military to modify and repair equipment and systems. Not surprisingly, industry is pushing back on that mandate. On September 25, Senator Elizabeth Warren (D-MA) sent a letter to various industry associations, questioning their motives to prevent a right-to-repair requirement that the Senate included in its proposed defense budget for fiscal year (FY) 2025. Warren also sent a separate letter to Secretary of Defense Lloyd Austin, expressing concern about contractual restrictions that void contractor warranties when third parties perform repairs and that prevent access to operations, maintenance, integration, and training data.

1. The Real Risk of Cybersecurity: Choosing to be Unaware

Since 2016, the federal government has implemented numerous procurement regulations and associated contract clauses to address cybersecurity by requiring contractors to adopt various controls and standards to protect sensitive, unclassified information, and to harden information technology (IT) systems to make them more resilient to all manner of cyber hacks. The easy part (not that it was at all easy) was developing the controls and standards – NIST SP 800-171 (currently up to Rev. 3), and contract clauses (most notably, FAR 52.204-21, and DFARS 252.204-7012, 7019, 7020, 7021, and others). The difficult part is getting contractors to take seriously the obligation to invest in cybersecurity.

This blog post was republished in the October 2024 edition of Surety Bond Quarterly.

Did the 2023 update to the Davis-Bacon and Related Acts, which apply to contractors and subcontractors performing on certain federally funded or assisted contracts, appropriately modernize or unduly expand the Davis Bacon Act’s (DBA) prevailing wage rule?[1] Following the Department of Labor’s (DOL) enactment of a final resolution on August 23, 2023 (final rule),[2] interested parties immediately challenged the final rule, seeking a preliminary injunction. The parties argued that specified portions of § 5.2 and the entirety of § 5.5(e) in the final rule exceed the DOL’s authority under the DBA and will result in undue hardship and irreparable harm for government contractors in the construction industry.

On December 22, 2023, the National Defense Authorization Act for Fiscal Year 2024, Pub. L. No. 118-31, 137 Stat. 136 (2023) (NDAA 2024) went into effect. Among other things, NDAA 2024 includes a provision phasing out self-certification of service-disabled veteran-owned small businesses (SDVOSB) and requiring Small Business Administration (SBA) certification of SDVOSB program eligibility, not unlike the requirements for the HUBZone program. SDVOSBs and prime contractors, who seek to work with them to bid on and perform contracts set aside for SDVOSBs, should take note of these changes, which become effective October 1, 2025.

As the end of fiscal year 2023 approaches, the potential for a shutdown looms due to Congress not passing necessary spending bills. Our partners provide guidance for government contractors on mitigating economic risks in the event of a shutdown. Key steps include preparing and updating an inventory of open contracts and agreements, seeking specific instructions from the contracting officer in writing, and setting up new cost pools to track costs related to the shutdown. Contractors are advised to keep accurate records of decisions, instructions, and costs incurred during the shutdown to maximize recovery potential. Upon the end of the shutdown, contractors should assess and quantify increased costs and seek recovery where economically viable.

The Department of Defense (DOD) wants to make it easier for companies with innovative solutions, such as startups, to bid on and receive federal government contracts. As such, DOD recently proposed a Defense Federal Acquisition Regulations (DFARS) amendment to implement provisions of the 2022 and 2023 National Defense Authorization Acts, which provide DOD with the authority to acquire “innovative commercial products and commercial services” under general solicitations using a new, more streamlined competitive selection process called a “commercial solution opening” (CSO). The amendment will add a new subpart to DFARs Part 212 at 212.7X. DOD expects the proposed process to reduce transaction costs for both private and public sectors, which it hopes will encourage smaller companies with innovative ideas and proven solutions to take part in the federal government contracting marketplace.

Introduction

On April 29, Aerojet Rocketdyne Holdings Inc. (Aerojet) settled claims by whistleblower Brain Markus for a reported $9 million after the second day of a jury trial.[1] This is the second recent settlement under the False Claims Act (FCA) relating to alleged misrepresentations about a company’s cybersecurity practices and systems in connection with

On February 28, the U.S. Department of Justice (DOJ) agreed to a $930,000 settlement with Comprehensive Health Services (CHS) to resolve False Claims Act allegations. The resolution represents the department’s first settlement under the False Claims Act since instituting its Civil Cyber Fraud Initiative in October 2021.[1] This is a watershed moment in the