Investigations, Enforcement, & Compliance Alerts
Sort by:
2 results
February 18, 2026
|3 min read
Beyond the CMMC: New Cybersecurity Assessments for Government Contractors
The General Services Administration (GSA) recently announced changes to procedural guidance that may affect contractor eligibility for GSA contracts. GSA issued the IT Security Procedural Guide: Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems and Organizations Process CIO-IT Security-21-112, which set out a cybersecurity framework for protecting CUI that is similar to the Cybersecurity Maturity Model Certification (CMMC) for DoD contracts.
February 19, 2025
|3 min read
GSA Announces FAR Deviations to Enforce Executive Orders for Government Contractors
On February 15, 2025, the acting administrator of the United States General Services Administration (GSA), Stephen Ehikian, announced on X (formerly Twitter) that the GSA issued several new deviations from the Federal Acquisition Regulation (FAR) intended to implement key Trump Executive Orders that aim to end illegal discrimination, restore merit-based opportunity, and eliminate the forced use of paper straws in procurement.
About This Blog
Winston & Strawn’s Investigations, Enforcement, & Compliance Alerts highlight and analyze significant issues and developments in government investigations, enforcement, civil and criminal trial defense and litigation, compliance, and related matters, providing insights on the legal and strategic implications for individuals and corporations conducting domestic and international business.
Contributors
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Partner
Of Counsel