JD Supra

What the Department of Defense Final Rule ‘Assessing Contractor Implementation of Cybersecurity Requirements’ Means for Government Contractors’ Information Security Systems

On September 10, 2025, the Department of Defense (DoD) issued a long-awaited final rule related to the implementation of the Cybersecurity Maturity Model Certification (CMMC) program. The final rule ...
Federal News Network

DoD’s system to protect classified information held by contractors is under strain

They are unable with their current resources … to cover the number and frequency of the security assessments they are required to do," said Joe Kirschbaum.
Technical

Hoping to score a federal contract during the Trump years? Prepare your security plans now

With a new administration now in office, cybersecurity is likely to take center stage as overall national security efforts become increasingly prioritized. As a result, we will continue to see ...
JD Supra

GSA Updates Internal IT Security Guidance for Protecting CUI—Why Contractors Should Pay Attention

On January 5, 2026, the U.S. General Services Administration (GSA) issued Revision 1 of CIO‑IT Security‑21‑112, its internal IT Security Procedural Guide governing how Controlled Unclassified ...
Nextgov

America’s defense contractors are failing basic cybersecurity and China is exploiting it

COMMENTARY: The gap between what Americans believe about the security of our defense contractors and the grim reality should alarm everyone. Most Americans likely assume that defense contractors, ...