house-reps-introduce-legislation-to-counter-prc-cyber-threat-against-us-critical-infrastructure

House Reps Introduce Legislation to Counter PRC Cyber Threat Against US Critical Infrastructure

Rep. Laurel Lee, R-Fla., has introduced legislation titled “Strengthening Cyber Resilience Against State-Sponsored Threats Act,” which aims to counteract the increasing cybersecurity threat against U.S. critical infrastructure brought about by the Communist Party of China.

Under the proposed legislation, an interagency task force would be formed to address the threats posed by cyber actors linked to the People’s Republic of China, such as Volt Typhoon, according to a news article posted Tuesday on the House Committee on Homeland Security website.

The measure, which was co-sponsored by Reps. Mark Green, R-Tenn., and John Moolenaar, R-Mich., also mandates the task force to provide Congress with a classified report and briefing regarding its findings and recommendations concerning malicious cyber activity by the CCP. The report would have to be filed every year for five years.

The task force would be led by the FBI and the Cybersecurity and Infrastructure Security Agency.

Commenting on the bill that she introduced, Lee said, “It is critical that the federal government implements a focused, coordinated, and whole-of-government response to all of Beijing’s cyber threats, so no other actors succeed.”

For his part, Green, who chairs the House Homeland Security Committee, said, “Now is the time to address the threat China poses in cyberspace,” while Moolenaar, who chairs the Select Committee on the Chinese Communist Party, said, “I’m proud to co-sponsor this legislation alongside Rep. Laurel Lee that will help protect the American people.”

Hear from various speakers to learn more about the various security concerns facing the U.S. and what’s being done to address them at the Potomac Officers Club’s 2024 Homeland Security Summit, which will take place on Nov. 13. Register now to attend this important event!

gao-finds-inconsistencies-in-contractor-performance-reporting-compliance

GAO Finds Inconsistencies in Contractor Performance Reporting Compliance

Federal agencies are required to report contractor performance and conduct in the Federal Awardee Performance and Integrity Information System, or FAPIIS, but some departments were found inconsistent in complying with the reporting obligation, the Government Accountability Office said.

An assessment focused on fiscal years 2019 to 2023 revealed that some agency personnel did not know or understand their reporting requirements, which were established to inform future contract award decisions, according to a GAO report published on Wednesday.

The government watchdog found that over the five-year period, 335 contract terminations and 52 administrative agreements were reported in other sources but not in FAPIIS, a database that provides information on previous government work of contractors.

The GAO study focused on the Departments of Defense, Energy, Health and Human Services, and Veterans Affairs and the General Services Administration.

The DOD said it had limited insight into why contractor integrity records were not reported in FAPIIS while the GSA pointed to gaps in its guidance and limited awareness of reporting requirements among personnel as reasons for underreporting.

Other agencies, meanwhile, cited various reasons for not reporting terminations and have since addressed them.

GAO made recommendations to resolve the issue, including directing the administrator of the Office of Management and Budget’s Office of Federal Procurement Policy to reiterate integrity reporting requirements and identify available resources to help ensure that agency personnel have the guidance needed to comprehensively report and verify the accuracy of integrity information.

senators-debate-how-to-minimize-the-security-risks-of-federal-contractors-working-with-china

Senators debate how to minimize the security risks of federal contractors working with China

Amid the ongoing global competition between U.S. and China, a Senate panel debated placing new restrictions and safeguards on companies that perform work for both governments in a hearing on Tuesday, while also criticizing agencies that have not yet implemented policies that Congress has already passed to address the issue. 

“It goes without saying that major U.S.-based technology service providers working for foreign adversaries while performing multibillion-dollar contracts for the U.S. government risks exposing vulnerabilities that can be exploited by our adversaries,” said Senate Homeland Security and Governmental Affairs Committee Chairman Gary Peters, D-Mich. “We can and must stop this.”

Peters pointed to 2023 cyber espionage campaigns by China that breached several government email accounts partly through a flaw in Microsoft’s cloud-computing environment. 

“This attack has raised serious concerns that China-backed hackers were able to steal this information because of [Microsoft’s] partnership with a Chinese entity, while they were providing services to the U.S. government at exactly the same time,” Peters said. 

He also brought up reports that consulting firm McKinsey & Co. advised Chinese state-run enterprises while also contracting with the Defense Department. 

That incident is one reason why Sen. Josh Hawley, R-Mo., introduced legislation to prohibit federal consulting contracts from going to an organization that provides consulting services to the governments of China, Russia or any country that the Secretary of State determines has repeatedly provided support for acts of international terrorism. 

The Senate Homeland Security and Governmental Affairs panel advanced Hawley’s measure back in May in a 10-1 vote. The lone “no” vote came from ranking member Rand Paul, R-Ky., who criticized the purpose of Tuesday’s hearing. 

“People worry that contractors who work for the Chinese government will be influenced by Chinese communism. It’s also that the reverse may be true — that American contractors contracting for the Chinese government may be bringing in influence from America and from American capitalism, as well,” he said. 

Bryan Riley of the National Taxpayers Union testified that Hawley’s bill represents a “slippery slope.” 

“This legislation, in particular, does not appear to require a demonstration of a specific national security threat resulting from covered transactions,” he said. “It is simply — you provide a service to the Chinese government, you get banned here.” 

Unimplemented laws 

The Government Accountability Office last week reported that the federal government has missed deadlines to put into effect three out of five laws or provisions regarding conflicts of interest in contracting: 

  • The Defense Department has not followed a provision in the fiscal 2020 National Defense Authorization Act directing it to improve its procedures for assessing the risk of foreign ownership, control or influence for defense contracts and subcontracts that are more than $5 million. DOD officials told GAO that they are still in the earliest stages of the rulemaking. 
  • DOD has not revised the Defense Federal Acquisition Regulation Supplement, in accordance with the fiscal 2024 NDAA, to prohibit the department from entering consulting contracts with vendors that provide such services to China and other certain foreign entities, unless the company maintains a conflict of interest mitigation plan that can be audited or a waiver is issued. The Defense Acquisition Regulations Council is currently working on an interim rule to promulgate the requirement. 
  • The Federal Acquisition Regulatory Council has not implemented requirements in a 2022 law to update the Federal Acquisition Regulation with definitions, guidance and examples for contractor relationships with foreign entities that could cause conflicts of interest involving undue influence. Officials from the Office of Federal Procurement Policy, the administrator of which chairs FARC, said to investigators that the update is “complex and has required more time than normal to address.” 

Regarding the 2022 law, Peters, who sponsored the legislation, during Tuesday’s hearing criticized FARC for delaying implementation of the measure’s requirements. Jessica Tillipman, the associate dean for Government Procurement Law Studies at George Washington University, testified that, until the law is implemented, agencies will continue to use “uneven” practices for gauging contractor conflicts of interest. 

“[E]ach agency is basically left on their own to come up with their own approach to organizational conflicts of interest, which has led to severe inconsistencies among agency approaches,” she said. “Moreover, given the failure of [FARC] to update the FAR in several decades, we have outdated definitions and guidance that have not appropriately captured the many risks that continue to grow and create more conflicts of interest ranging from the security concerns we’re talking about here to commercial conflicts of interest to even the risks associated with emerging technology.”

DOD and OMB agreed with GAO recommendations to set milestones in order to carry out the unimplemented laws in as timely a manner as possible, with the watchdog stressing the need for expediency in their action. 

“Without DOD and the Office of Management and Budget’s [OFPP] establishing milestones for completing the necessary and legally required steps to ensure these laws are implemented as expeditiously as possible, acquisition officials will continue to lack the knowledge that could help protect U.S. national security when awarding contracts to consultants,” the authors of the GAO report wrote. 

With respect to the two contracting conflict of interest laws that have been implemented, government officials told GAO that they are not aware of any foreign influence risks that have been identified as a result of their applications.  

DOD enacted a provision in the fiscal 2022 NDAA requiring contractors to disclose whether they have employees who will work in China on contracts worth more than $5 million, and agencies like DOD and the Homeland Security Department have implemented a 2022 law mandating a risk-based approach when assessing small businesses seeking certain research and technology awards. 

Federal agencies between fiscal years 2019 and 2023 spent more than $500 billion on contracts for consulting services. DOD and the Homeland Security Department accounted for more than half of that amount.

chenega-&-cybersheath-pass-jvsa-validation-with-perfect-score

Chenega & CyberSheath Pass JVSA Validation With Perfect Score

Chenega Corporation has collaborated with CyberSheath to pass a Joint Surveillance Voluntary Assessment—or JSVA—validation with a perfect score of 110.

To successfully pass the JSVA, Chenega used CyberSheath’s fully managed federal enclave, which ultimately aligned with NIST 800-171 protocols needed for protecting controlled unclassified information within the defense supply chain, the Reston, Virginia-based company announced Monday.

Eric Noonan, CEO of CyberSheath Services International, said, “Our federal enclave solution is designed to take the complexity out of compliance for our clients.”

“Chenega’s perfect JSVA score demonstrates the effectiveness of our approach in ensuring CMMC readiness and maintaining ongoing compliance with the DOD. Chenega’s commitment to compliance before the rest of the DIB exemplifies why it has long been considered a leader in government contracting,” Noonan added.

The JVSA is a vital part of the Cybersecurity Maturity Model Certification 2.0 framework, which will begin in early 2025 and become a requirement for contracting with the Department of Defense.

Kevin Gustin, senior director of Information Security at Chenega Corporation, said the perfect JVSA score is a testament to the work the companies have done together over the past two years. 

“This success strengthens our position as a trusted partner in the federal contracting space and provides peace of mind with CMMC 2.0 implementation on the horizon,” Gustin said.

According to a study conducted by Merrill Research, contractors earned an average score of -15 against the 110 paradigm on last year’s JVSA.

federal-workers-will-see-the-largest-increase-to-their-health-care-premiums-in-recent-memory-next-year

Federal workers will see the largest increase to their health care premiums in recent memory next year

Federal employees and retirees will pay an average of 13.5% for more on their health care premiums in 2025, a figure that is nearly double last year’s increase and marks the largest price hike in recent memory.

The government’s share of Federal Employees Health Benefits Program premiums will increase by an average of 10.01%, bringing the overall premium increase to 11.2%. In 2024, civilian federal employees were estimated to pay an average of 7.7.% more on premiums than the previous year, a slight decrease from the 8.7% rate hike in 2023, the largest the program had seen in a decade.

On average, federal workers enrolled in “self-only” plans will pay an additional $16.24 per biweekly pay period, while feds in “self plus one” insurance plans will pay $33.73 more per pay period. Employees enrolled in family coverage will pay an average of $26.10 more per pay period next year.

Under the Federal Employees Dental and Vision Insurance Program, the average premium for dental plans will increase by 2.97%, while vision plans will increase by an average of 0.87%.

2025 marks the first year of the Postal Service Health Benefits Program, which replaces the U.S. Postal Service’s previous health insurance offerings—as well as the mandate to prefund future retirees’ health benefits. As part of the shift to the new program, USPS employees will see their portions of premiums increase by an average of 11.1% next year, while the government’s portion will increase by 5.1% on average.

On a biweekly pay period basis, Postal Service workers enrolled in “self-only” plans will see their premiums increase by $10.04 in 2025, while those in “self plus one” plans will increase $29.93 on average per pay period. USPS employees enrolled in family insurance coverage will see their premiums increase by $30.68 on average next year.

The FEHBP and PSHBP’s annual open season, in which federal and postal employees can choose from a variety of regional and national insurance carriers and coverage plans, will run from Nov. 11 through Dec. 9. Among the drivers of this year’s premium increases are price increases from both providers and suppliers, increased use of some prescription drugs and increased behavioral health spending.

OPM and the White House on Wednesday announced that beginning next year, multiple national—and often several regional—FEHBP and PSHBP insurance carriers offer comprehensive IVF coverage to the tune of $25,000 or more. Also new in 2025 are requirements that all FEHB carriers cover at least GLP-1 class anti-obesity drug, such as Ozempic or Wegovy, for weight loss treatments, alongside two additional oral anti-obesity drugs. Carriers must also offer “comprehensive behavioral therapy,” including diet and exercise regimens, to those prescribed those drugs.

Wednesday’s announcement that OPM had negotiated expanded fertility coverage came as welcome news to federal employee groups and Democrats in Congress, who have been lobbying for expanded access to IVF after the Alabama Supreme Court briefly banned the treatment last spring.

“I applaud the Biden-Harris administration for taking this decisive action that I’ve called for to ensure all federal employees have access to IVF coverage—because everyone deserves the ability to access the fertility treatment they need to build their families, no matter where they live,” said Sen. Tammy Duckworth, D-Ill. “While this is welcome news, any future president could reverse this decision—so it’s critical we permanently protect and expand access to IVF nationwide and ensure no patient or doctor is criminalized simply for trying to start or grow their family.”

“In 2025, every FEHB enrollee, regardless of where they live and work, will be able to choose from multiple nationwide plans that offer comprehensive IVF coverage,” said Rep. Gerry Connolly, D-Va. “Additionally, every FEHB plan will be required to cover the prescription drugs required for three cycles of IVF annually, ensuring every enrollee in the country is able to choose a plan with fertility coverage. Providing federal employees with options to start and grow their families will in turn help the government recruit and retain the federal workforce of the future.”

Stacey Young, president of the Department of Justice Gender Equality Network, an employee association made up of nearly 2,000 employees at the Justice Department that has been on the forefront of lobbying OPM to require additional fertility coverage from insurers, said 2025’s additions will help retain a highly qualified and diverse workforce.

“President Biden, Vice President Harris, and OPM have again shown their commitment to federal employees’ reproductive healthcare needs,” she said. “Many DOJ GEN members, like countless workers across the federal government, have endured hardships without adequate IVF coverage. We expect that the expansion of access in 2025 will provide many more of our nation’s public servants with the ability to grow their families, and to do so without extreme financial struggles.”

But the rate increase is a bitter pill to swallow for other employee groups, particularly given the 2% average pay raise feds are slated to receive in January.

“This is the highest health insurance premium increase in more than two decades and will stretch employees’ paychecks beyond what they can afford,” said Doreen Greenwald, national president of the National Treasury Employees Union. “I call on President Biden and Congress to take immediate action on providing federal employees with an average 7.4% increase as called for by the FAIR Act.”

William Shackelford, national president of the National Active and Retired Federal Employees Association, urged federal employees and retirees to look closely at their coverage options during this year’s open season.

“These increases are unwelcome news that will no doubt cause sticker shock for federal and postal employees and retirees across the country,” he said. “But that sticker price may not be what you pay if you compare plans and shop for a more affordable alternative. All FEHB and PSHB plans offer comprehensive coverage, so it’s difficult to make a bad choice. But you can leave money on the table if you don’t compare costs and options.”

army-opting-for-more-agile-approach-to-software-procurement

Army Opting for More Agile Approach to Software Procurement

The U.S. Army is working to apply agile principles not only to software development but also to its software acquisition process, citing the need for a contract vehicle that could enable it to procure software offerings from industry, Federal News Network reported Wednesday.

Doug Bush, assistant secretary of the Army for acquisition, logistics and technology, highlighted the need for a contract vehicle that could help the service branch speed up the award process.

“The first goal is speed. Having a vehicle established will allow us to go faster on task orders than doing a de-novo contract in every case, which I think is better for industry,” Bush said.

“What we’ve seen without this approach is that all of our program executive offices have to do their own separate competitions for different software development, each a little bit different way, and it’s just — we hope — more efficient to have a vehicle they can use to go faster,” he added.

According to FNN, the Army is developing a request for proposals for a potential 10-year, $1 billion indefinite-delivery/indefinite-quantity contract for software procurement with contract types determined at the task order level.

“Every contract needs to be tailored to the task, and it’s not a simple world of cost-plus versus fixed-price,” Bush noted.

the-best-dates-to-retire-in-2025

The best dates to retire in 2025

Download the Best Dates to Retire Calendar

It’s finally here! You are old enough and have enough service to retire. You have also determined that you can afford to retire! Now, all that is left to determine is the best date to retire. This is item #2 in Section B of the retirement application. All you have to do is insert your date of final separation… also known as your retirement date! 

Voluntary (CSRS, CSRS Offset, and FERS) retirement benefits commence the first day of the month after you separate from service if you have met the age and service requirements.  Of course, the last day of each month is seldom at the end of the week, or the end of a leave period for that matter, but regardless of which day of the week the last day of the month falls on, you will receive credit for each day through close of business of the day you make your retirement effective (even if it is a holiday).   

Example: James is planning to retire on Sat., May 31, 2026 (or Fri., May 30, 2026), after 24 years of service at age 60. This is the end of leave period 10. Although James will reach his 60th birthday on May 14, he will wait to retire until the last day of May so that he will receive his salary through May 31. His retirement won’t commence until June 1 regardless of whether he retires on May 14 or May 31. James will be paid his full biweekly salary for leave period 10 and he will accrue his final leave accrual for this period (8 hours of annual leave and 4 hours of sick leave). His first monthly retirement benefit payment will be for the month of June with the payment due on July 1.   

Here is a calendar to help you plan your best date for 2025 retirement.

dod-seeks-feedback-on-proposed-rule-on-cost,-pricing-data-requirements

DOD Seeks Feedback on Proposed Rule on Cost, Pricing Data Requirements

The Department of Defense has proposed a rule to apply sections of the National Defense Authorization Acts for fiscal years 2018, 2021 and 2022 to effectively update the cost or pricing data submission requirements for contractors.

According to a Federal Register notice published Thursday, DOD proposed the rule as an amendment to the Defense Federal Acquisition Regulation Supplement.

Upon the request of a contracting officer, a section in the FY 2018 NDAA requires offerors to submit data other than certified cost or pricing data.

A section of the FY 2021 NDAA sets a $2 million threshold for TINA requirements, also known as the Truthful Cost or Pricing Data statute, regarding modifications to contracts or subcontracts.

Meanwhile, a section in the FY 2022 defense authorization measure directs contracting officers to modify contracts to reflect the relevant TINA threshold as necessary.

According to DOD, the proposed rule will help foster efficiency and reduce costs related to administering contracts by implementing a uniform TINA threshold and provide government contracting officers with the ability to collect data other than certified pricing or cost data for contract modifications.

The department also noted that raising the TINA threshold for subcontracts and contract modifications could benefit small businesses by reducing the overall number of contracts to which TINA requirements apply.

Comments on the proposed rule are due Nov. 25.

usps-delays-reforms-and-promises-a-smooth-election-mail-service

USPS delays reforms and promises a smooth election-mail service

The U.S. Postal Service is confident it can once again deliver election mail in a timely manner despite increased delays in many parts of the country, seeking to assuage lawmaker concerns by promising to delay its reform efforts until after Nov. 5. 

USPS will again institute “extraordinary measures” to ensure ballots are sent out and returned quickly, Postmaster General Louis DeJoy told a panel of the House Appropriations Committee on Thursday, which include special actions agency employees must take to identify and expedite ballot delivery.

The measures will begin Oct. 21 and consist of extra deliveries and collections, special pickups, expanded hours at processing plants, Sunday collections and visual checks of various points for ballots. USPS is also conducting daily sweeps at its facilities for ballots and ensuring postmarks for any piece of mail identified as a ballot. 

“We will ensure that all necessary resources are available so that we can successfully fulfill our role in delivering the mail when election officials and voters choose to use our services as part of their election process,” DeJoy said, adding USPS has established a “robust and tested process.” 

So far, DeJoy said, postal employees are executing “fairly well” on its election plan, though he acknowledged the agency has improvements to make. A recent inspector general report found USPS overwhelmingly delivered political and election mail on time during the 2024 primary season, but said some workers failed to conduct key procedures such as performing “all clear” checks for ballots each day. The IG further found DeJoy’s signature Delivering for America plan to stabilize USPS operations and finances threatened the Postal Service’s election performance. 

DeJoy said on Thursday he would pause the rolling out of his “optimized collection plan” that requires mail to sit overnight at post offices instead of being collected each evening for transportation to a processing center beginning Oct. 1 and continuing through the election. The sites that have already implemented the new collection schedules will receive extra transportation for ballots specifically starting Oct. 21. DeJoy previously announced that most of his processing plant consolidation efforts not already underway would be paused until at least Jan. 1, 2025. 

The postmaster general said that even something as routine as maintenance on a machine would not take place in the run-up to the election without his direct sign-off. 

He is taking those steps, he said, “not necessarily because it’s going to impact the mail, but because we’re trying to to calm everybody down.” 

DeJoy acknowledged many of the initial rollouts of his changes have not gone smoothly, with on-time mail delivery plummeting in many of the areas that have piloted the reforms. He stressed that was not unexpected—noting “the first rockets that went to the moon blew up”—and promised the issues would not affect ballot delivery. 

“None of the modernizing or network rationalizing actions we have taken, or are in the process of taking, will impact our successful delivery of election mail, and any, in any event, any changes that could have a potential or perceived impact are being paused or delayed until after the election or until 2025,” he said. 

USPS recently announced, as has been requested by dozens of lawmakers on both sides of the aisle, that it would seek an advisory opinion for its changes from the Postal Regulatory Commission. It will ask the regulators to weigh in on the consolidation plan, the new collection schedule and proposed changes to its service standards to allow for the slower delivery of mail. 

The latter proposal is likely to draw significant, bipartisan pushback, though it would not go into effect until after the election. The PRC previously called on USPS to pause DeJoy’s reform efforts, noting the agency in 2023 missed many of its performance, customer service and safe workplace goals. 

DeJoy’s announcement that he would pause any reform efforts until after the election came as local election officials in all 50 states earlier this month voiced concern in a letter to the postmaster general that his agency’s failures threatened prompt and thorough election mail delivery.

Postal employees are not properly trained, more election mail is being delivered late with some states receiving hundreds of ballots 10 or more days after postmark and ballots are increasingly being returned as undeliverable, the National Association of Secretaries of State and the National Association of State Election Directors said in their joint letter.   

DeJoy told committee members he has since reached out to the election officials and held meetings with his own election mail teams to address concerns. He and his executive team are meeting twice per week on election matters and are going through all of the complaints. DeJoy stood up an Election and Government Mail Services team in 2021 that meets year-round and has held 47 outreach events in 2024. DeJoy noted he also holds weekly meetings with the inspector general. 

Rep. Mark Pocan, D-Wis., sharply criticized DeJoy during the hearing for his reform efforts and the impact they have had in his home state. He said he was “heartened” that the postmaster general is pausing further changes until after the election and said he was pleased the “extraordinary measures” would be instituted as previous efforts around the election proved effective. Despite some disruptions, due in part to the COVID-19 pandemic and DeJoy’s prior reform efforts, USPS largely executed successful delivery efforts during the 2020 and 2022 elections when voting by mail increased significantly. 

Rep. Dave Joyce, R-Ohio, who chairs the subcommittee that hosted DeJoy on Thursday, said he held the hearing so the postmaster general would understand “clearly that it’s a very deep concern among us.”

congress-cleared-cr-to-extend-federal-funding-for-3-months

Congress-Cleared CR to Extend Federal Funding for 3 Months

A stopgap funding measure is now headed to the White House for President Joe Biden’s signature after Congress passed the bill to avert a government shutdown and extend federal funding through December, Breaking Defense reported Wednesday.

The Senate passed the continuing resolution in a 78-18 vote two hours after the House voted 341-82 to approve the legislation.

The CR, which seeks to extend federal funding through Dec. 20, does not include the White House’s request for an additional $2 billion for the construction of Virginia-class submarines and the Presidential Drawdown Authority’s extension to provide military assistance to Ukraine.

According to the report, the president is expected to sign the bill into law ahead of the Sept. 30 deadline.

“The passage of this bill gives Congress more time to pass full-year funding bills by the end of this year. My Administration will work with Congress to ensure these bills deliver for America’s national defense, veterans, seniors, children, and working families, and address urgent needs for the American people, including communities recovering from disasters,” Biden said in a statement published Wednesday.