Tag: Regulatory Compliance and Ethics

What Contractors Should Know about DOJ’s Revised Guidance on Evaluations of Corporate Compliance

Brian S. Gocial and Stephanie M. Harden

Stephanie Harden's Headshot Photo

As government contractors know well, a robust compliance program can be critical—both in preventing, detecting, and resolving compliance problems and in working with agencies and/or the Department of Justice (“DOJ”) to resolve compliance issues when they arise. Though DOJ has previously issued guidance on how it evaluates corporate compliance programs, on April 30, 2019, it greatly expanded upon its earlier guidance with a lengthy new guidance document. The document is notable for its emphasis not just on the design of compliance programs, but also on their effectiveness in practice. The document is a useful benchmark for contractors to evaluate their compliance programs, as well as to demonstrate their affirmative responsibility to agencies when facing agency-level investigations.

The guidance document focuses on three central questions:

    1. Is the corporation’s compliance program well designed?
    2. Is the corporation’s compliance program implemented effectively?
    3. Does the compliance program actually work in practice?

The following outline provides a summary of the various factors DOJ discusses in connection with each of these questions—and more information on each topic can be found here.

Contractors should assess how their own compliance programs measure up against these factors: Continue reading “What Contractors Should Know about DOJ’s Revised Guidance on Evaluations of Corporate Compliance”

Top 10 Trends and Compliance Obligations in the Evolving World of Commercial Item Procurement

Blank Rome Partner Justin A. Chiarodo will be a presenter at BDO’s Winter 2019 Marketplace Outlook Update for Government Contractors, “Top 10 Trends and Compliance Obligations in the Evolving World of Commercial Item Procurement.” This live webinar will take place Thursday, February 28, 2019, from 12:30 to 1:30 p.m. EST.

For more information, please visit our website.

Navigating Violations in the Export Controls Minefield (Part 3 in a Series)

David Yang

In the first two parts of this series, we covered companies’ obligations under U.S. export control laws, such as the Export Administration Regulations (“EAR”) governed by the Department of Commerce, Bureau of Industry and Security (“BIS”), and military or defense exports governed by the International Traffic in Arms Regulations (“ITAR”) under the auspices of the State Department’s Directorate of Defense Trade Controls (“DDTC”), and common ways to mitigate your organization’s risk against violations. Unfortunately, no compliance program can prevent all violations, and this final part of our series addresses the key considerations your organization should keep in mind in the event you discover that an apparent violation may have occurred. How your company addresses apparent violations are as important as anything else, because they end up determining the repercussions that your organization may face from these and other enforcement agencies. Continue reading “Navigating Violations in the Export Controls Minefield (Part 3 in a Series)”

Government Contractor Shutdown Advisory

Justin A. Chiarodo and Albert B. Krachman

With yet another government shutdown looming, contractors face a number of uncertainties and challenges that warrant close attention—regardless of whether a shutdown takes place or how long it lasts. Among other challenges, contractors may face a lack of incremental funding; the inability to enter into new contracts or contract modifications; closed government facilities; furloughed government employees; delayed payments; increased indirect costs; and unexercised and deferred contract options. Below we offer six suggestions to help address key areas impacted by a shutdown, including contract funding, internal and external communications, recordkeeping, and deadlines.

Continue reading “Government Contractor Shutdown Advisory”

DFARS Cybersecurity Compliance Countdown: Are You Ready?

Justin A. Chiarodo and Carolyn Cody-Jones

It’s almost here. After years of rulemaking, covered defense contractors will soon be fully subject to heightened cybersecurity standards for covered defense information (“CDI”) on IT systems under DFARS 252.204-7012, and contractors submitting new proposals will be representing that their systems are compliant with these security requirements pursuant to DFARS 252.204-7008. We discuss in this post seven compliance tips beyond the basics that are worth revisiting during this final compliance push. Continue reading “DFARS Cybersecurity Compliance Countdown: Are You Ready?”

Risk Management in the Export Controls Minefield (Part 2 in a Series)

David Yang

As the recent Bright Lights USA case demonstrates, export violations continue to be met by aggressive enforcement actions by U.S. government authorities. In Bright Lights USA, the U.S. State Department’s Directorate of Defense Trade Controls (“DDTC”) charged and fined a small manufacturer $400,000 for violating the International Traffic in Arms Regulations (“ITAR”) by exporting, without obtaining a license, engineering designs and drawings abroad for minor vehicle spare parts (such as rubber seals, gaskets and grommets, etc.) in connection with bids sent to foreign manufacturers to produce the parts for Bright Lights to resell to its commercial and public sector customers. Although the parts were commercial items and many other similar parts in the category in which Bright’s Lights conducted business had transitioned off of the U.S. Munitions List, the company had failed to update its list for parts that were still controlled. The DDTC found that the violations had occurred in large part due to the company’s “significant training and compliance program deficiencies.” Continue reading “Risk Management in the Export Controls Minefield (Part 2 in a Series)”

How Is Your Domestic Preference Compliance? President Trump Signals More Scrutiny of “Buy American, Hire American” Practices

Justin A. Chiarodo and Stephanie M. Harden

President Trump signed an Executive Order yesterday, marking another step forward in his promotion of “Buy American” and “Hire American” policies. The Executive Order focuses on two areas: cracking down abuse of the H-1B guest worker program and promoting the purchase of American products in federal procurements. We tackle in this post the “Buy American” portion of the Executive Order, which is of particular importance to federal contractors. Continue reading “How Is Your Domestic Preference Compliance? President Trump Signals More Scrutiny of “Buy American, Hire American” Practices”

Managing the Export Controls Minefield (Part 1 in a Series)

David Yang and Christian N. Curran 

yangcurranDespite recent political shifts away from globalization, international trade remains a bedrock of the U.S. economy, and companies doing business in the United States must be cognizant of the intricate set of export control regulations promulgated by the U.S. government. In today’s rapidly changing economy, it is more important than ever for companies to thoroughly assess their connections to the international marketplace. While the Obama Administration took strides toward simplifying the export control process, U.S. export control regulations remain complex due to the multiple government stakeholders involved, resulting in varying interpretations, policies, and agendas. Export control violations can still carry serious ramifications for a company’s business practices both inside and outside the United States. Accordingly, the first of this three part series begins by identifying whether your business may be subject to the U.S. export controls regime. Our next two installments will then, respectively, address: (Part 2) practical strategies for addressing risk mitigation; and (Part 3) enforcement actions by the government. Continue reading “Managing the Export Controls Minefield (Part 1 in a Series)”

DHS Contractor? Pricey New Cybersecurity Requirements (and Hidden Risks) May Await You

Justin Chiarodo

Justin A. ChiarodoThe Department of Homeland Security (“DHS”) recently issued three new proposed cybersecurity regulations for DHS contractors which warrant careful attention. Although a freeze on new regulations by the Trump administration will likely delay any final agency action, and extensive comments and meaningful changes to any final rules are expected, these new regulations could radically impact the compliance landscape for DHS contractors. As with recent cybersecurity amendments to the Federal Acquisition Regulation (“FAR”) and Defense Federal Acquisition Regulation Supplement (“DFARS”) (which we’ve covered here and here), these proposed rules seek to impose more safeguarding, handling, reporting, and training requirements on covered contractors. We continue to see cybersecurity as a major business risk in the industry today, and recommend contractors pay close attention to their operational, technology, and risk management practices relating to cybersecurity. We highlight the key elements of the proposed rules below. Continue reading “DHS Contractor? Pricey New Cybersecurity Requirements (and Hidden Risks) May Await You”

Does Your Cybersecurity Program Satisfy Recent DFARS Amendments?

Justin Chiarodo

There is no question cybersecurity is a critical compliance and risk area for federal contractors. A seemingly endless stream of cyberattacks—on corporate databases, government servers, even baby monitors—shows the breadth of these problems and the need for action. Government contractors have the added challenge of specialized regulatory obligations, with compliance (or non-compliance) having a direct impact on the value of their business. Continue reading “Does Your Cybersecurity Program Satisfy Recent DFARS Amendments?”