1. Home
  2. |Insights
  3. |Agencies May Not Rely On Flawed DCAA Audits

Agencies May Not Rely On Flawed DCAA Audits

Client Alert | less than 1 min read | 02.04.10

In McKissak+Delcan JV II (Jan. 13, 2010), GAO for what may be the first time rejected a DCAA determination that the offeror’s accounting system was inadequate and sustained the protest because the agency had improperly relied on DCAA’s determination in rejecting the offeror’s proposal. Adequacy of business systems is an element of an agency’s responsibility determination when evaluating proposals, and bid protests are likely the only viable forum for contractors to contest findings of system inadequacies.

Contacts

Insights

Client Alert | 2 min read | 07.15.26

CMMC Phase II Suspension Requires Reconsideration of Such Requirements in Solicitations

As discussed in more detail here, the U.S. Department of War (DoW) recently issued a memorandum (Memo 26-P-1023, dated July 13, 2026) directing the immediate suspension of Cybersecurity Maturity Model Certification (CMMC) Phase II requirements. Significantly, the memo directs that “all pending and future CMMC implementation milestones across DoW solicitations and contracts are held in abeyance until further notice.” Moreover, the DoW issued a memorandum on implementing these requirements (available here), directing agencies to issue amendments removing CMMC Level 2 and 3 requirements from active solicitations “as soon as practicable.” Contractors should monitor the government’s compliance with this requirement and should be prepared, if needed, to file a bid protest to protect their rights....