What we’re talking about
The System for Award Management (SAM) has undergone significant changes under the Revolutionary FAR Overhaul (RFO). This RFO initiative is an effort by the Office of Federal Procurement Policy (OFPP), the Federal Acquisition Regulation (FAR) Council, and the General Services Administration (GSA) to support sound procurement for government contracts. It is being initiated in an
Cyber insurance has become a larger part of the cybersecurity risk management process for businesses. This is due to the rising potential impacts of cyber threats to sensitive data. As a result, cyber liability insurance market is changing rapidly. These changes include reduced coverage limits, increased premium, and requirements for adequate security controls for cyber
The IA9100 Series Standards are due for release in 2026. The International Aerospace Quality Group (IAQG) is conducting comprehensive revisions of AS9100, AS9110, AS9120 and AS9145. The transition period for organizations to adopt the new standards will likely extend until 2029. AS9100 Standard History and Overview AS9100 Quality Management Systems – Requirements for Aviation, Space,
MIL-STD-461 documentation development is a requirement in preparing for testing. Test plans should include the content called out in DI-EMCS-80201 Electromagnetic Interference Test Procedures (EMITP). This content includes a table of all MIL-STD-461 procedures to be performed, description of the Equipment Under Test (EUT), and any approved exceptions or deviations. Other requirements include test site
The U.S. Department of Commerce has announced the launching of the American AI Exports Program. This initiative is part of a larger effort by President Donald Trump to advance the United State’s leadership in advanced technologies. The program will include hardware, software, applications, models, and full stack AI export. Full Stack AI refers to a
Counterfeit part prevention remains a high priority for the aerospace, defense, and electronics sectors in 2025. Unauthorized parts when used in critical applications can lead to catastrophic failures. Counterfeit components can include remarked parts or cloned components that are illegally manufactured. There is an escalating trend for counterfeit parts in most manufacturing sectors. Components at
The growth of utilization of technology in QMS provides many advantages but also raises critical concerns. This growth is occurring as a result of technological advancements and changes in the global manufacturing marketplace. While these developments have the potential for increasing customer satisfaction and continuous improvement of business processes they also present added complexity to
Cybersecurity trends for 2025 show multiple areas of concern in a time of growing risks. A Cybersecurity Assessment Report from Bitdefender reveals findings from 1,200 cyber professionals that define key areas for improvement. These areas include reduction of attack surfaces, complexity of disparate tools, c suite perceptions, and cyber professional burnout. Reporting Incidents In the
The U.S. Secret Service dismantled a network of devices in New York city that posed a significant telecom threat. This equipment could have potentially disabled cellphone towers facilitating anonymous communications for criminal activities. This operation was particularly urgent due to the ongoing United Nations General Assembly meeting with world leaders. Equipment at Various Sites Across
Cybersecurity Maturity Model Certification (CMMC) and export compliance programs should be coordinated efforts driven by upper management to avoid export regulation violations. A Federal News Network article discussed the fact that CMMC assessments are uncovering unknown export regulation violations. The article points out the dangers of maintaining compliance programs in separate silos. Technology Control Plan
The Defense Federal Acquisition Regulation Supplement (DFARS) implementing the Cybersecurity Maturity Model Certification (CMMC) program has been finalized. This rule, available on the Federal Register, will become effective November 10, 2025. This action by the Department of Defense (DoD) (now the Department of War) will make CMMC compliance a contractual requirement on all solicitations and
Export regulations effectiveness in the protection of U.S. national security and promotion of foreign policy objectives has become a growing concern given the pace of regulatory changes. Recently, the Foundation for Defense of Democracies and the Center for Strategic and International Studies have published reviews of their findings on the issue. U.S. Semiconductor Controls Center
A Department of Defense (DoD) class deviation has postponed the CMMC compliance requirement originally set for October 1, 2025. This requirement, effective as of September 3, 2025, notifies contracting officers that they are not to use the DFARS 252.204-7021 contract clause in new solicitations and contracts. This class deviation will remain in effect until the
The AUKUS nuclear submarine program is under a Pentagon review to access if the agreement will leave the U.S. Navy with sufficient submarine fleet assets to address its national security requirements. There have been concerns that the current agreement would leave the United States with a shortage of Virginia class boats due to challenges in
In an attempt to level the playing field, the Bureau of Industry and Security (BIS) revokes Validated End-User (VEU) waivers that allowed foreign-owned semiconductor facilities in China to import U.S. technology without licenses. Companies such as Samsung and SK Hynix will now be required to obtain licenses for their operations. This move aims to level
Microsoft has been using Chinese engineers to assist with the maintenance of the Department of Defense’s (DoD) cloud systems, supervised by U.S. personnel known as “digital escorts.” This arrangement, which dates back decades, involved using U.S. citizen Microsoft employees with security clearances to oversee work being done on highly sensitive databases. In many cases these
