Forget The Showers. April Brings Flurry of New Cyber Guidance.
Client Alert | 1 min read | 05.01.18
April has marked a busy month for those following the DoD’s approach to contractor cybersecurity. Earlier in the month, the DoD published a much-anticipated revision to their Frequently Asked Questions regarding DFARS 252.204-7012 and other cybersecurity requirements, reflecting feedback on various questions posed by industry over the past year and including new information regarding:
- COTS and commercial items
- Scope of covered defense information
- Conflicts with foreign laws
- Subcontractor flowdowns
- System security plans (SSPs) and plans of action & milestones (POAMs)
- Requirements for FIPS-validation, multifactor authentication, and marking
- Cybersecurity requirements beyond NIST SP 800-171
- Cloud service providers
- Examples of cyber incidents
- Guidance for small businesses
- DCMA oversight
Then just weeks later, the DoD issued proposed guidance for evaluating contractor cybersecurity, including implementation of NIST SP 800-171. Importantly, contractors may comment on the draft guidance through May 31 – and would be well-served to familiarize themselves with the new FAQs before doing so.
Contacts

Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
- D | +1.202.624.2698
- Washington, D.C. (CGA)
- D | +1 202.624.2500
Insights
Client Alert | 4 min read | 02.20.26
SCOTUS Holds IEEPA Tariffs Unlawful
On February 20, 2026, the Supreme Court issued a pivotal ruling in Trump v. V.O.S. Selections, negating the President’s ability to impose tariffs under IEEPA. The case stemmed from President Trump’s invocation of IEEPA to levy tariffs on imports from Canada, Mexico, China, and other countries, citing national emergencies. Challengers argued—and the Court agreed—that IEEPA does not delegate tariff authority to the President. The power to tariff is vested in Congress by the Constitution and cannot be delegated to the President absent express authority from Congress.
Client Alert | 7 min read | 02.20.26
Section 5949 Proposed Rule Puts the FAR Council's Chips on the Table
Client Alert | 5 min read | 02.20.26
Trump Administration Pursues MFN Pricing for Prescription Drugs
Client Alert | 4 min read | 02.19.26
Proposed NY Legislation May Mean Potential Criminal Charges for Unlicensed Crypto Firms

