On July 15, 2014, the U.S. Department of Defense (“DOD”) issued a proposed rule that imposes new requirements for third-party audits of three contractor business systems, as well as a requirement for contractors to self-report deficiencies uncovered in these audits or in internal reviews of these business systems. The three business systems at issue are a contractor’s accounting system, its estimating system, and its material management and accounting systems (“MMAS”). The impetus for the proposed rule appears to be the serious backlog in audits waiting to be performed by the Defense Contract Management Agency (“DCMA”) and the Defense Contract Audit Agency (“DCAA”). According to a recent GAO reports, both agencies suffer from high workloads that prevent them from meeting their auditing obligations in the business systems area.

Outsourcing Requirements:  DOD’s proposed solution to this backlog is to outsource some of the auditing responsibilities to third-party certified public accountants (“CPA”) and require contractors to self-report any deficiencies. Although this approach could reduce DCAA’s and DCMA’s auditing backlog and address industry concerns that these two agencies are too quick to find significant deficiencies in contractor business systems, such a “solution” is not without risks and costs to contractors.  We provided a more detailed analysis of the proposed rule in the attached Law360 Article entitled Inside_The_Proposed_DFARS_Business_Systems_Rule.

Although the contractor — together with its CPA — would be responsible for assessing and auditing these three business systems, DOD still would perform its own review on top of the contractor’s review. If the contracting officer (“CO”)determined that there were one or more significant deficiencies or that the contractor had not complied with the applicable reporting and audit requirements, the CO would have 30 days to respond in writing to the initial determination, after which the contracting officer would make his/her “final determination” of whether there were any remaining deficiencies or noncompliance. The CO also would have discretion to withhold payments to the contractor upon a final determination of significant deficiencies or noncompliance with applicable reporting and audit requirements. However, the withholding of payments does not limit the other remedies that the CO may seek against a contractor because of harm caused by a deficient business system. The proposed rule would not impact DCMA’s existing role in reviewing and auditing contractors’ purchasing, government property and management, and earned value management systems. It bears noting, however, that payments may be withheld for significant deficiencies under any of the six contractor business systems pursuant to the existing procedures under DFARS 252.242-7005, even though the proposed rule reaches only estimating, MMAS, and accounting systems.

Impact of the Rule:  The proposed rule does not address the ambiguities and risks inherent in the current rules governing business systems compliance, but it does create a new dynamic among contractors, their private auditors, and the government. The proposed rule may allow the government to approve a contractor’s systems more quickly, which would be welcome news for the contractor community. The backlog of government audits has been an issue for some time, and some contractors may embrace the use of third party auditors if they are waiting for government resolution on a number of fronts. It is not clear, however, whether this new proposed framework will realize meaningful time efficiencies. Government auditors who review third-party CPA audits may not be inclined to rubber stamp those findings. Moreover, the required disclosure of deficiencies is troublesome. Should an audit uncover information that puts a company at legal risk, the audit will not have been conducted under a privileged review. Thus, the disclosure requirement in the proposed rule may be at odds with a contractor’s desire to more fully investigate any issues raised by an audit and could force a quicker resolution to the matter than would be required otherwise under the FAR mandatory disclosure requirement.

DOD has solicited written comments in response to the proposed rule, which must be submitted by Sept. 15, 2014.

 

 

Tags: audit, business systems rule, CPA, DCAA, DCMA
Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Susan B. Cassidy Susan B. Cassidy

Susan Cassidy co-chairs Covington’s Aerospace and Defense Industry Group, and has been advising government contractors for more than 35 years on the requirements imposed on companies contracting with the U.S. Government.

Susan’s practice focuses on the intersection of cybersecurity, national security, and supply…

Susan Cassidy co-chairs Covington’s Aerospace and Defense Industry Group, and has been advising government contractors for more than 35 years on the requirements imposed on companies contracting with the U.S. Government.

Susan’s practice focuses on the intersection of cybersecurity, national security, and supply chain risk management for companies that sell products and services to the U.S. Government. Susan advises contractors at all phases of the procurement cycle, and regularly:

advises clients on compliance obligations imposed by the FAR, DFARS, and other agency regulatory requirements;
leads internal and government False Claims Act (FCA) investigations addressing allegations of violations of government cybersecurity, national security, supply chain, quality, and MIL-SPEC requirements; and
advises clients who have suffered a cyber breach where U.S. government information may have been impacted.

In her work with global, national, and start-up contractors, Susan advises companies on all aspects of government supply chain issues including:

Government cybersecurity requirements, including the Cybersecurity Maturity Model Certification (CMMC), DFARS 252.204-7012, FedRAMP, controlled unclassified information (CUI), and NIST SP 800-171 requirements;
Evolving sourcing issues such as Section 889, counterfeit part requirements, Section 5949 semiconductor product and service restrictions, and limitations on sourcing a variety of products from China; and
Federal Acquisition Security Council (FASC) regulations and product exclusions.

 

Susan previously served as senior in-house counsel for two major defense contractors (Northrop Grumman Corporation and Motorola Incorporated) and is Chambers rated in both Government Contracts and Government Contracts Cybersecurity. Chambers USA has quoted sources stating that “Susan’s in-house experience coupled with her deep understanding of the regulatory requirements is the perfect balance to navigate legal and commercial matters.”

Susan is a former Public Contract Law Procurement Division Co-Chair, former Co-Chair and current Vice-Chair of the ABA PCL Cybersecurity, Privacy and Emerging Technology Committee.

Susan’s pro-bono work extends to assisting veterans in a variety of matters, as well as providing advice to elderly clients on their wills and other end-of-life planning documents.

Read more about Susan B. CassidyEmail
Show more Show less
Photo of Scott A. Freling Scott A. Freling

Scott Freling co-chairs the firm’s Government Contracts practice and is recognized by Chambers USA as a leading practitioner. He divides his practice between representing civilian and defense contractors in traditional government contracts matters and guiding buyers and sellers—including a number of leading private…

Scott Freling co-chairs the firm’s Government Contracts practice and is recognized by Chambers USA as a leading practitioner. He divides his practice between representing civilian and defense contractors in traditional government contracts matters and guiding buyers and sellers—including a number of leading private equity firms—through the regulatory aspects of complex M&A deals involving government contractors.

Chambers USA ranks Scott as a Band 1 lawyer for Government Contracts M&A. Scott is sought after for his regulatory expertise and his ability to apply that knowledge to the transactional environment. He has extensive experience leading classified and unclassified due diligence reviews of government contractors, negotiating transaction documents, and assisting with integration and other post-closing activities. He has served as the lead government contracts lawyer in dozens of M&A deals, with a combined value of more than $80 billion. Scott’s notable transactions include Warburg Pincus and Berkshire Partners’ take-private acquisition of TRIUMPH for $3 billion, Advent International’s take-private acquisition of Maxar Technologies for $6.4 billion, Aptiv’s acquisition of Wind River for $3.5 billion, and Veritas Capital’s sale of Alion Science and Technology to Huntington Ingalls Industries for $1.65 billion.

Scott also represents contractors at all stages of the procurement process and in their dealings with federal, state, and local government customers. He handles a wide range of government contracts matters, including compliance counseling, contract terminations, claims, disputes, audits, and investigations. Scott frequently advises contractors on organizational conflicts of interest and government intellectual property rights. He also counsels clients on risk mitigation strategies, including obtaining SAFETY Act liability protection for anti-terrorism technologies.

Law360 has recognized Scott as a MVP in Government Contracts. He was a founding co-chair of the Mergers and Acquisitions Committee of the ABA’s Public Contract Law Section.

Read more about Scott A. FrelingEmail
Show more Show less
Photo of Kayleigh Scalzo Kayleigh Scalzo

Ranked by Chambers USA among government contracts practitioners, Kayleigh Scalzo represents government contractors in bid protests and other high-stakes litigation matters with the government and other private parties. She has litigated bid protests in a wide variety of forums, including the Government Accountability…

Ranked by Chambers USA among government contracts practitioners, Kayleigh Scalzo represents government contractors in bid protests and other high-stakes litigation matters with the government and other private parties. She has litigated bid protests in a wide variety of forums, including the Government Accountability Office, U.S. Court of Federal Claims, U.S. Court of Appeals for the Federal Circuit, FAA Office of Dispute Resolution for Acquisition, federal and state agencies, and state courts.

Kayleigh a co-chair of the American Bar Association Public Contract Law Section’s Bid Protest Committee. She is also a frequent speaker on bid protest issues.

Kayleigh maintains an active pro bono practice focused on immigration issues and gender rights.

Read more about Kayleigh ScalzoEmail
Show more Show less