Compliance

The Milwaukee Metropolitan Sewerage District (MMSD) is set to award a significant **$700 million** wastewater contract by fall 2026, with heightened compliance mechanisms in place. Key bidders include **Veolia North America** and **Jacobs Solutions**, amid emerging concerns regarding the current operator’s performance.

The Department of Defense is implementing strict CMMC compliance deadlines, mandating prime contractors to secure certification by July 30, 2026. The enforcement expands to additional contractors by November 2026, necessitating early investment in cybersecurity compliance programs to maintain eligibility for defense contracts.

Starting in 2026, the California Privacy Protection Agency will launch cybersecurity audits of companies, intensifying enforcement of privacy standards ahead of certification requirements in 2028. Contractors should prepare for implications on procurement related to cybersecurity services and compliance regulations.

Failure to secure an Authority to Operate (ATO) threatens government contract continuity and workforce stability. Understanding the risks involved with the Assessment and Authorization (A&A) process is essential for procurement professionals to safeguard their contracts against disruptions.

The OMB's new Memorandum M-25-22 changes federal AI procurement by enforcing stricter governance and compliance measures. Vendors must prioritize governance frameworks and audit practices to remain competitive, reflecting a significant shift in procurement standards across federal and sub-federal agencies.

On May 8, 2026, federal agencies unveiled nearly 1,000 procurement opportunities totaling **$394.1 million**. This substantial availability across multiple sectors and states signals robust federal spending and invites contractors to strategically engage with diverse solicitations.

The **Oklahoma County Jail Trust** has finalized a **$7 million** settlement concerning the 2021 death of inmate Brad Leon Lane, with costs being split between insurance and increased property taxes. This decision will significantly influence future procurement strategies within detention center operations, focusing on improved risk management and vendor oversight.

Interweave Technologies has launched a Complete Compliance Managed Service in Madison County, Alabama, aimed at small and mid-sized businesses. This service simplifies adherence to complex cyber liability insurance requirements and federal regulations, enhancing procurement opportunities for contractors in the defense and healthcare sectors.

NexusTek has achieved CMMC Level 2 certification, ensuring compliance with all NIST SP 800-171 controls. This position enhances NexusTek's role as a trusted partner for Department of Defense contractors needing to meet stringent cybersecurity requirements.

CISA’s Emergency Directive 25-03 requires federal agencies to address the FIRESTARTER malware affecting Cisco's firewall products. This directive not only reflects a pressing threat but also creates new procurement opportunities for cybersecurity vendors focused on incident response and compliance strategies.

The demand for professionals with Information System Security Officer (ISSO) experience is rising as they transition into critical cybersecurity roles such as governance and compliance management. Agencies and contractors can harness this trend to enhance their security posture and meet compliance requirements through strategic hiring and training initiatives.