CISA Launches Secure by Design Framework to Strengthen Cybersecurity!
Imagine moving into a new house. Locked the front door, maybe even installed a fancy camera system. Does it feel secure? Probably more than before but obviously that’s just the beginning. That’s exactly how Kirk Lawrence, program manager for the Cybersecurity and Infrastructure Security Agency’s (CISA) Secure by Design initiative, described the framework during his talk at the Critical Effect cybersecurity conference in Washington, D.C.
Lawrence explained that incorporating Secure by Design is like locking that front door as it’s a basic but essential first move. It doesn’t mean no one can break in; it just means attackers will have to try harder. “Secure by Design is not the end of risk. It’s the start of resilience,” he said. Secure by Design isn’t about creating invincible systems. It’s about engineering technology in a way that makes attacks more difficult, less likely, and easier to recover from when they happen.What really stood out was CISA’s effort to make Secure by Design not just a technical requirement, but a business priority. Lawrence shared that his team is currently working on creating a clear, compelling business case for Secure by Design that can be shared with C-level executives to help them understand its value beyond IT. His point was straightforward: unless there’s executive buy-in, the initiative doesn’t stand a chance. It’s not enough for engineers to believe in it but leadership has to back it too. This business case is expected to be released within the next six months and will aim to provide talking points for tech leaders to make their case in the boardroom.
This update comes on the heels of major leadership changes in the initiative, with Bob Lord and Lauren Zabierek departing in April. Meanwhile, cybersecurity policy is also evolving at the federal level. A new executive order from President Donald Trump has revised previous Biden-era cybersecurity strategies. One of the most significant updates is a directive for the National Institute of Standards and Technology (NIST) to create a consortium under the National Cybersecurity Center of Excellence. This group will develop updated secure software development guidance based on the Secure Software Development Framework which is another move that reinforces Secure by Design as a national priority. The deadline for this deliverable? August 1, 2025.
That NIST framework, first published in 2022, already emphasizes the importance of Secure by Design principles. So, what’s the takeaway? Secure by Design isn’t a finish line. It’s a foundation. It’s the idea that security shouldn’t be added at the end and it should be baked in from the beginning. It’s the digital equivalent of planning for earthquakes while pouring the concrete, not after the building is already standing. For organizations, this means changing how they think about and approach product development. It means investing in security early. It means making sure leadership understands that cybersecurity isn’t just a technological problem and also it’s a business issue. And above all, it means recognizing that the work doesn’t end after the system goes live. Ongoing vigilance, updates, training, and support are just as critical as the initial rollout.
In a world where breaches are the norm, not the exception, Secure by Design gives us a chance to rethink how we build, support, and protect our digital systems from the ground up. Because locking the front door is great but it’s just the beginning.
📜 COMPLIANCE AND REGULATION UPDATES
Navigating multi-year contracts in the US government’s acquisition process can sometimes be a headache. These multi-year contracts, spanning up to five years, let contractors lock in stable deals for supplies or services, slashing costs and boosting efficiency.
The easier solution here is think fewer administrative hiccups and happier workforces. But here comes the ‘but’: multi-year contracts come with a cancellation ceiling, a safety net covering unrecovered nonrecurring expenses like special tooling or training if funds vanish mid-program. Contractors, take your notebooks. Nail your cost breakdowns to avoid surprises! With multi-year contracts, you’re not just signing a deal; you’re diving into a strategic game where firm needs and savvy forecasting win big. Agencies love multi-year contracts for their predictability, but compliance is key: ensure your funding aligns with OMB Circular A-11 to keep the cash flowing. Mastering these multi-year contracts can broaden your competitive edge in the government’s quest for value!
OReady’s NOAA Contract Protest Stumbles
We got a new story in the ever changing procurement world, OReady, LLC, a tenacious woman-owned small business from Las Vegas, took on NOAA over a contract awarded to ULU Hi-Tech, Inc. for Linux system support under RFQ No. 1305M324Q0286. OReady argued that NOAA’s procurement process unjustly excluded them for failing to meet technical requirements, specifically omitting a draft Quality Control Plan (QCP). They also pointed to NOAA’s inconsistent justifications, clouding the procurement evaluation. Yet, NOAA’s procurement rules stood firm: OReady’s missing QCP made their quotation a non-starter, rendering them ineligible for the award. Even if other evaluation flaws existed, this procurement blunder meant OReady had no shot at victory. The lesson here? In the unforgiving landscape of procurement, missing a key requirement can sink your chances, no matter how strong your protest.
🔓 Introduction to the Federal Miller Act for Newbies!
Once upon a time, there was a small boat that set sail on a vast ocean. The boat carried a modest crew that trusted a sturdy anchor to keep them safe when storms appeared. One day, a fierce storm struck and the crew clung to hope as the anchor held steady. This tale is much like the experience of many small contractors when they work on federally funded construction projects. They depend on bonds to protect their work and secure their pay. The Federal Miller Act acts as that strong anchor in a turbulent sea.
The Federal Miller Act is a law that protects the people who work on federal construction projects. It asks prime contractors to post bonds to guarantee that their work is done well and that the people who supply labor or materials are paid. The law is written in a way that makes sure that every helper on the job feels safe and confident. Newcomers and veterans alike find comfort in knowing that there is a backup in case of any mishap.
The Miller Act was first passed in the midst of hard times. In the 1930s, during the era of the Great Depression, many businesses and people suffered from unfair practices. The government needed a way to assure people that their work would be valued and that their efforts would be rewarded. This law was born out of a need to protect workers and small businesses when large federal projects were underway. The act came in as a guardian, promising that a prime contractor would not let down the team that helped complete the work.
At the heart of the act are two types of bonds. One bond promises that the project will be completed as agreed. This promise is known as a performance bond. The other bond promises that those who supply labor and materials will be paid fully and on time. This is called a payment bond. New contractors learn quickly that these bonds are a sign of trust and accountability. They help to build a fair system where all parties share in the responsibility to see a project come to life.
The bonds required by the Miller Act apply to projects that belong to the federal government and that have contracts above a certain amount. For contracts that exceed a set threshold, the prime contractor must secure both a payment bond and a performance bond. For smaller contracts, the law has other rules. For example, contracts that are valued between lower limits are still expected to have some form of payment protection. This thoughtful design of the law makes sure that federal spending is safeguarded and that even the smallest helper is not left at risk.
Government officials have spoken about the law in plain and honest language. One contracting officer once said, “The Miller Act is a simple promise to protect those who work hard on government projects. It gives assurance that laborers and suppliers will not be forgotten.” This straightforward remark shows how the act is a sign of fairness and trust in a system that involves many different players. Many newspaper articles have written about how the act has helped people avoid disputes over payment. A report in a well-known newspaper noted that the act has saved many workers from losing their income after a project ran into trouble.
The law works by holding contractors to their word. When a prime contractor wins a federal project, they must quickly secure the bonds. This step is not optional. The government or the contract officer makes sure that the bond comes from a trusted source. The bond is called a surety and it comes from a company that is approved by the government. In simple words, if the contractor cannot pay, the bond company will make sure that the laborers and suppliers receive what they are owed. This careful check builds a system of trust that keeps all parties honest.
Many workers, subcontractors, and material suppliers take comfort in the law. They have seen instances where a project stalled because of financial troubles. In those rough moments, the bond acted as a safety net. One supplier told a local newspaper, “When I worked on a federal project, the bond paid me on time even when the main contractor failed. It felt like a promise kept.” Such stories remind us that the law is not just words on paper. It is a tool that gives hope and fairness on busy construction sites.
The Miller Act is not a modern invention. It has roots that go deep into the history of federal construction. Long ago, a similar idea was born out of the need for fairness during troubled times. In the early years, there were many disputes that hurt workers and suppliers. This problem led to the development of a law that would hold contractors to high standards. The law was later refined and updated to meet the real needs of the present day. This evolution shows that the Miller Act has always aimed to protect those who work for the government.
Newcomers to the world of federal contracting should know that the act has clear steps for resolving payment disputes. If a subcontractor or supplier finds that they have not been paid, the law gives them a way to take action. Their first step is usually to talk to the prime contractor. If that does not resolve the matter, they have the right to seek legal help. They can file a claim in a federal district court. The claim must be made within a set period after the last delivery of work or materials. In many cases, this period is one year. Such clear rules remove uncertainty when payment problems arise and ensure that no one is left without recourse.
A helpful article in a national newspaper explained that the bond system under the act reduces the number of disputes that turn into long legal battles. This positive view is shared by many experts. A senior official from the Government Accountability Office stated, “When the bond is in place, there is less room for conflict and more trust in the process. This brings stability to federal projects.” These words, spoken in plain language, give a clear picture of why the act matters. They show that the law is not meant to complicate work but to simplify it for everyone involved.
Many states have taken note of the success of the Miller Act. They have created laws that offer similar protections on state-level projects. These laws are sometimes called Little Miller Acts. They work in much the same way as the federal law. They help to make sure that everyone who puts work into a public project gets a fair deal. This continuity between federal and state projects makes it easier for contractors to understand their responsibilities. It also creates a fair playing field that encourages hard work and honest dealing.
For a new contractor, learning about the Miller Act may seem daunting at first. The words may appear legal and complex. However, the true meaning is simple. The act is an assurance that those who help build our public works will always have a promise to get paid. It is a legal commitment that backs up the work with a financial safety net. The act tells every worker that their contribution matters and that the system is there to protect them.
One of the strengths of the Miller Act is its focus on fairness. The law was created to protect people who might otherwise be left in difficult financial situations. If something goes wrong and a prime contractor fails to meet the terms of a contract, the bond can be used to fill the gap. This safety net prevents a bad situation from turning into a hard lasting hardship for workers and suppliers. It makes sure that the public money used for a project reaches its intended destination. This idea has resonated with many professionals who work on large public projects each day.
The principles behind the act promote accountability and trust. Every time a contractor secures a bond, they show that they stand by their word. This builds confidence not only among workers but also among the public. When everyone knows that there is a promise in place, the project moves forward with greater assurance. Many industry experts see this as a key reason for the sustained use of the act over many years.
For a newcomer, it is important to view the Miller Act as a friend that supports the hard work of many people. It is like the steady hand that guides a small boat through rough waters. When you step into the busy world of federal projects, this law becomes a part of your daily life. It is a reminder that every person working on a project matters. They are not just cogs in a machine but individuals whose work builds the future.
In many ways, the Miller Act is both a tool and a teacher. It teaches the value of responsibility and of keeping one’s word. It shows that fairness in business matters and that promises must be kept. In every successful project, you can see the mark of the act in action. It helps the project stay on track and ensures that every hand that contributes is acknowledged.
For those new to the field, understanding the basics of the act is a good start. It may seem legal and technical at first, but reading simple accounts in trusted newspapers and listening to the words of experienced government officials can help. Their clear messages show that the law is built on common sense. It asks contractors to be honest and asks the system to protect the vulnerable.
Today, the Federal Miller Act stands as a pillar in the field of federal construction. It is a law that supports fair dealing and builds trust among workers, suppliers, and the government. The act is a reminder that in every large project, it is the small, honest contributions that make a difference. Much like the anchor of a boat, it holds everything together through calm seas and stormy nights alike.
💰 American Petroleum Tanker Secures $185M U.S. Navy Tanker Charter!
American Petroleum Tanker LLC, headquartered in Blue Bell, Pennsylvania, has scored a major win with the U.S. Navy, landing a significant $39.4 million firm-fixed-price contract that could ultimately balloon to a whopping $185.1 million if all contract options are exercised. Awarded by the Military Sealift Command (MSC) in Norfolk, Virginia, this deal isn’t just about numbers and it’s a pivotal piece in the Navy’s long-term logistics and operational readiness strategy.
Under this contract, American Petroleum Tanker will provide a U.S. flag Jones Act-compliant tanker that meets an extensive set of technical and operational specifications. This isn’t your average ship. The selected vessel must be equipped with segregated ballast tanks and an inert gas system, ensuring the safe transport of flammable cargoes across vast oceanic routes. Moreover, the ship must be capable of carrying a minimum of 280,000 barrels of clean petroleum products such as F76 (a naval distillate fuel), JP5 and JP8 (jet propellants commonly used in naval and Air Force aircraft), or JA1 (a kerosene-type aviation fuel) all within the vessel’s own natural cargo segregation system and protected by double valve isolation. These technical features aren’t just safety requirements, they’re operational necessities for handling volatile fuel products in high-stakes military environments.
And what makes this contract particularly notable is its structure. The base period spans 12 months, but the Navy has included three additional one-year options and a final 11-month option, allowing for potentially five years of service through June 2030. This long-term scope highlights the Navy’s commitment to sustained, secure, and dependable fuel transport capabilities which is critical in both peacetime operations and times of conflict. While the contract allows for worldwide deployment, the vessel is primarily intended to operate along the U.S. West Coast, a region of increasing strategic interest due to evolving defense postures in the Pacific and Indo-Pacific theaters.
The procurement process itself is also worth noting. The contract was released through full and open competition, meaning it was accessible to a broad range of potential vendors via the federal Governmentwide point of entry. Despite this openness, only one proposal was received underscoring just how specialized and demanding the Navy’s tanker requirements are. Not every ship operator has a vessel that meets the Navy’s stringent criteria for safety, capacity, and regulatory compliance.The next few years will see this vessel and possibly others serve as a floating lifeline, carrying the fuels that power naval ships, aircraft, and operations across the globe.
📢 Want to be featured in our next issue? [Submit Your Win Here]
🗣️ UPCOMING EVENTS
Event: Q3 Deltek Vantagepoint Customer Town Hall – EMEA/NA
Date: Aug 13, 2025
Event: Simplify Field Reports and Punch Lists with Deltek ArchiSnapper
Date: Jul 10, 2025
