Agencies May Not Rely On Flawed DCAA Audits

Client Alert | less than 1 min read | 02.04.10

In McKissak+Delcan JV II (Jan. 13, 2010), GAO for what may be the first time rejected a DCAA determination that the offeror’s accounting system was inadequate and sustained the protest because the agency had improperly relied on DCAA’s determination in rejecting the offeror’s proposal. Adequacy of business systems is an element of an agency’s responsibility determination when evaluating proposals, and bid protests are likely the only viable forum for contractors to contest findings of system inadequacies.

Contacts

Daniel R. Forman
Partner
He/Him/His
- Washington, D.C.
  - D | +1.202.624.2504
ZGZvcm1hbkBjcm93ZWxsLmNvbQ==

Insights

Client Alert | 13 min read | 06.12.26

EU Cyber Resilience Act Countdown: 11 September 2026 Incident/Vulnerability Reporting Deadline Less Than 100 Days Away

The EU Cyber Resilience Act (CRA) is an EU product cybersecurity law for connected products (formally, “products with digital elements” under the CRA) commercialized in the EU; it entered into force on 10 December 2024, with direct application across the EU. Full application begins 11 December 2027, but one of its most operationally demanding provisions takes effect in just under 100 days, on 11 September 2026: the mandatory vulnerability and incident reporting under Article 14 CRA....

Client Alert | 6 min read | 06.11.26
CMS Announces New Medicaid Eligibility Requirements: Implications for Managed Care Plans
Client Alert | 7 min read | 06.11.26
Qatar Rewrites the Playbook: What the New Public M&A Rules Mean for Market Participants
Client Alert | 2 min read | 06.11.26
Synthetic Performers, Real Consequences: Implications of Trailblazing New York AI Ad Law

View All Insights