Skip to content Skip to left sidebar Skip to right sidebar Skip to footer

Federal Contracting

NIST looking for a Small Cybersecurity Business – Do you qualify?

The National Institute of Standards and Technology (NIST) is looking for a small business to assist with the creation of privacy and cybersecurity standards that will apply to federal agencies. Additionally, NIST hopes to gain assistance with the development and modeling of software and applications for various tools, including the National Vulnerability Database.(Nextgov March 29, 2021)

The sources sought notice posted on beta.SAM.gov states, “with a new and re-energized national emphasis on information security, the NIST Information Technology Laboratory’s (ITL) Computer Security Division (CSD) is uniquely positioned to ensure that new technology initiatives are selected, deployed, and operated in a manner that does not increase the risk to organizational missions, individuals and the Nation.” (ibid)

“NIST expects the requirements of its mission to expand and anticipates the need for support in meeting these requirements. The support needed to ensure a successful mission ranges from internal programmatic support to technical expertise and research consulting in a wide range of cyber and information security areas.” (ibid)

Do you qualify for the cybersecurity SINs? Give us a call.

Higher federal procurement standards for IT providers – Are you ready?

The White House is spearheading an interagency endeavor concentrating on software development that will determine federal procurement of information technology (IT). In the coming weeks, vendors can expect to see new IT security standards, governmentwide. This comes after many tech companies complained that the effort under the Trump administration limited the import of information and communications technology from “foreign adversaries.” While leaving the definition of the term “foreign adversary” up to the Commerce Secretary. In addition, the rule as it stands today is broad and raises concerns over due process.

The SolarWinds breach will ultimately raise the bar on vendor security, banning tech from many countries, not just China. It also focuses on vendors and the possibility of vulnerability disclosure policies that encourage reporting weaknesses in their products. Ultimately, vendors providing IT products and services to federal agencies must have the proper level of cybersecurity in place.

Cybersecurity and Infrastructure Security Agency Acting Director Brandon Wales said agencies are working together to ensure consistency in the government’s approach to supply chain security across the Commerce Department rule, an executive order aimed at removing foreign adversaries from the bulk power sector. Wales also said, “the administration is counting on higher federal procurement standards to elevate security across the private sector as well.”

Are your IT products compliant? Give us a call.

 

 

Relax a Little – Expiring SAM Deadline Extended

GSA just announced a 180-day extension for organizations with expiring SAM website registrations. Those with registrations expiring between April 1 and September 30, 2021, will automatically be granted an extension. The extension is an effort to alleviate some of the burden during the implementation of the American Rescue Plan Act. (GSA Interact March 29, 2021)

GSA will send an email from samadmin@sam.gov with the subject line “180-Day SAM.gov Extension Granted for [Entity Name/DUNS/CAGE]” to those affected. The extension will not affect first-time registrants. The updated records will be stored within entity management extracts in SAM.gov and available through web services after the records are extended. (ibid)

Need help with your registration? Give us a call.

CTA and Small Businesses

In January, Congress enacted the 2021 National Defense Authorization Act. It includes amendments to the U.S. Anti-Money Laundering Act, the most noteworthy of which is the Corporate Transparency Act (CTA). (JDSupra, March 22, 2021)

The most significant elements of the CTA to know now:

  • CTA legislation requires “beneficial” business owners to report specific information to the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN). A beneficial owner directly or indirectly controls at least 25 percent of the company. Beneficial owners must report their full name, date of birth, current address, and unique identification number. This information will help  prevent the formation of shell companies and money laundering as well as terrorist organization funding.
  • Unless exempt, all privately held businesses in the U.S. are subject to the CTA reporting requirements.
  • CTA becomes effective 1 January 2022. Businesses formed after that time must submit reports within two years.  All business changes are required to be reported within one year.
  • Businesses should add beneficial owner information collection into their operations especially when there are multiple qualifying beneficial owners, as reporting/update deadlines can be cumbersome.
  • Failure to report or update beneficial owner information may include civil penalties up to $500 per day until the violation is corrected as well as criminal fines up to $10,000 and imprisonment for up to two years. (ibid)

The good news is that business entities have almost a full year to get their CTA reporting controls in place, to meet the 1 January 2022 effective date.

Have some CTA regulation reporting questions? Give us a call.

 

$355M for Women Owned Small Businesses

Over the past 20 years, the government has aimed to award at least 5 percent of contracts to Women-Owned Small Businesses (WOSBs). In FY2020, WOSBs received $561.7 million in contracts. However, GSA has only set aside $354.9 million for WOSB contracts in FY2021. (ExecutiveGov, March 4, 2021)

According to GSA’s Office of Small and Disadvantaged Business Utilization, 10.47 percent of the total FY2020 contracting obligations for women-owned vendors were prime awards. To lend a hand to these vendors, GSA provides support through training resources and Forecast of Contracting Opportunities. These tools and other activities earned GSA a grade of A+ from the Small Business Administration in FY2019 for their work to support small businesses. (ibid)

Are you a Small or Woman-Owned Small Business looking to prime or sub on an upcoming procurement? Give us a call.