CMMC Coming to Solicitations

Cybersecurity Maturity Model Certification (CMMC) requirements may show up in solicitations within six months. (GOVCONWire, May 12, 2020)

A Department of Defense spokesperson expects about 10 DoD RFIs in June to include the new requirements. She said, “As we release the RFIs, we’ll have the certified and trained auditors who will be able to go out to industry and certify companies at the level of maturity required for the work that they’re bidding on.” (ibid)

Additionally, changes to the Defense Federal Acquisition Regulation Supplement 252.204-7012 should be finalized by October. “You will not see the CMMC in any Department of Defense contracts or RFPs until the rule change is completed.” (ibid)

Questions on the Cybersecurity Maturity Model Certification and whether you can bid on upcoming solicitations? Give us a call.

GSA Extends Contract Data Reports Transition

GSA is extending the transition period for Contract Data reports in beta.SAM.gov. We don’t have a final transition date yet, although it’s expected later this year. This applies only to the reports function of FPDS.gov; everything else will remain as is. (GSA Interact, May 12, 2020)

GSA wants users to familiarize themselves with beta.SAM.gov while reports are available on both platforms. Furthermore, they want users to provide input on running reports. GSA is providing videos, FAQs, and reference guides to assist with the transition. (ibid)

GSA sees the following benefits to beta.SAM.gov:

  • Increased maximum number of rows returned from 30,000 to 150,000 rows in each report
  • Increased maximum number of years of reportable data from five years to 12 years
  • Additional data fields available for creating ad hoc reports
  • Tools for sharing ad hoc report structure with others, such as attributes and filters
  • Report Builder, a “wizard” that helps create new ad hoc reports
  • Intuitive tools to build, save, and share reports (ibid)

GSA used earlier feedback to determine the need for additional time before making the final transition to beta.SAM.gov. They will continue to take all feedback into consideration while transitioning. Any user can still use the feedback button to participate.

Trying to figure out if your reports will change and if you can retrieve them on the new platform? Give us a call.

 

CMMC not for COTS

A recent modification to DoD’s website spells out a small but very specific change about the Cybersecurity Maturity Model Certification (CMMC): it’s not applicable to DoD suppliers that only provide commercial-off-the-shelf products. (FedScoop, May 5, 2020)

Originally, DoD and CMMC administrators explained that all contractors and subcontractors must be certified under¬† CMMC by a third-party assessor. However, a few weeks ago, the Office of the Under Secretary of Defense for Acquisition and Sustainment changed the official website. The revised FAQ section states: “Companies that solely produce Commercial-Off-The-Shelf (COTS) products do not require a CMMC certification.” (ibid)

CMMC is in place to certify contractors have the cybersecurity practices in place to work with controlled unclassified information, the actual products themselves. (ibid)

Wondering if CMMC applies to the products and or services you provide? Give us a call.

GSA, Pandemic Style

GSA is moving quickly to enact several initiatives while responding to the COVID-19 pandemic. Because the current state of emergency necessitates the Federal Acquisition Service to purchase medical supplies and other equipment at a fast clip, Contracting Officers have no choice but to react with a fair amount of speed and flexibility. (Federal News Network, May 1, 2020)

This includes:

  • changing policies for prompt payment and onboarding/offboarding of contractors
  • construction of the new e-commerce marketplace platform, which was paused during the first few weeks of the pandemic, is now moving forward, albeit at a much slower pace
  • monitoring other initiatives possibly impacting by the pandemic, such as Enterprise Infrastructure Solutions (EIS)
  • continuing corrective actions on Alliant 2 revised proposals
  • expanding the small business innovation research (SBIR) program, part three

Some government markets, like travel, have declined; however cleaning products and enhanced screening services have increased exponentially. (ibid)

Any questions about getting your product or service in front of government buyers? Give us a call.

In the Navy (with Small Business)

The U.S. Navy, Office of Naval Research is offering $30 million in grants through 31 May to companies providing advanced technology. Through this effort, the Navy is funding its supply chain to ensure that their contractors can stay in business during the pandemic. An additional $250 million in small business awards is expected over the next 90 days. (FedScoop, April 28, 2020)

Awards are through the Small Business Innovation Research and Small Business Technology Transfer grant programs, which get money to small businesses more quickly than traditional solicitations. The following technologies are of interest:

  • modernization and sustainment
  • digital logistics
  • deployable manufacturing
  • resilient communications (ibid)

James Geurts, the Navy’s lead acquisition official, said the department is monitoring its supply chain in real-time with new tools to maintain stability. Many worry that a faltering economy and the shelter in place regulation will affect the supply chain and the military’s readiness. Guerts says the Navy is closely watching its research and development for emerging technology so as to stay a step ahead. (ibid)

Other Navy research offices are also serving as “technology enablers.” The Naval Expeditions Agility Office is looking for ways to better connect warfighters to tech experts and small businesses. Here again, the goal is to bring advanced technology solutions to national security challenges while helping small businesses to continue working with the Navy. (ibid)

Are you a small business with advanced technologies the Navy can use? Give us a call.