April 26, 2025
7
min read
Michael Hammond

Nation's First Case of DFARS Non-Compliance Against DoD Contractor Underway

Editor
Michael Hammond
Category
CMMC
Date
April 26, 2025
Share:
Twitter
Instagram
LinkedIn

Well, it finally happened.

A Department of Defense contractor is being prosecutedunder the False Claims Act for non-compliance with DFARS 252.204-7012. AerojetRocketdyne Inc. is currently facing legal action in the US District CourtEastern District of California under allegations that it knowinglymisrepresented the extent to which it was compliant with DFARS andcorresponding required protection on Controlled Unclassified Information (CUI).

For some time now OCD Tech has been cautioningorganizations subject to DFARS 7012 to take the clause seriously, takeimmediate action, and be transparent with the DoD on areas of noncompliance.DFARS compliance, until recently, has been a self-assessment exercise where theDoD contractor is responsible for implementing the appropriate securitycontrols, System Security Plans, and Plans of Action and Milestones, andreporting such information back to DoD where required. Invoicing on a contractsubject to DFARS carries with it the representation that the contractor is fullycompliant. We have publishedguidance on possible prosecution under the False Claims Act. It iswell known that the court system moves slowly and that is also true here. Theallegations in question concern activities taking place in 2014 and 2015. Nowwe are starting to see the enforcement activities catch up.

Don't assume all is well with your DoD contracts. The time has come to be proactive with your DFARS compliance efforts, rather than reactive. If you are subject to DFARS 7012 and are not fully compliant with the 110 security requirements in NIST Special Publication 800-171, contact the experts at OCD Tech today to review your options. With both audits and prosecutions underway, stay out of the government's crosshairs. OCD Tech will assess where you stand today, build a roadmap to compliance for you, and guide you along the way.

Contact us today or for more information including the top 5 things you can do within your organization to achieve DFARS compliance, Click Here!

[wpforms id="10103" title="false" description="false"]

Audit. Security. Assurance.

IT Audit | Cybersecurity | IT Assurance | IT Security Consultants – OCD Tech is a technology consulting firm serving the IT security and consulting needs of businesses in Boston (MA), Braintree (MA) and across New England. We primarily serve Fortune 500 companies including auto dealers, financial institutions, higher education, government contractors, and not-for-profit organizations with SOC 2 reporting, CMMC readiness, IT Security Audits, Penetration Testing and Vulnerability Assessments. We also provide dark web monitoring, DFARS compliance, and IT general controls review.

Contact Info

OCD Tech

25 BHOP, Suite 407, Braintree MA, 02184

844-623-8324

https://ocd-tech.com

Follow Us

Videos

Check Out the Latest Videos From OCD Tech!

Services

SOC Reporting Services
SOC 2 ® Readiness Assessment
SOC 2 ®
SOC 3 ®
SOC for Cybersecurity ®
IT Advisory Services
IT Vulnerability Assessment
Penetration Testing
Privileged Access Management
Social Engineering
WISP
General IT Controls Review
IT Government Compliance Services
CMMC
DFARS Compliance
FTC Safeguards vCISO

Industries

Financial Services
Government
Enterprise
Auto Dealerships

Blog
Category

Nation's First Case of DFARS Non-Compliance Against DoD Contractor Underway

By  
Michael Hammond
May 13, 2019
7
min read
Share this post

Well, it finally happened.

A Department of Defense contractor is being prosecutedunder the False Claims Act for non-compliance with DFARS 252.204-7012. AerojetRocketdyne Inc. is currently facing legal action in the US District CourtEastern District of California under allegations that it knowinglymisrepresented the extent to which it was compliant with DFARS andcorresponding required protection on Controlled Unclassified Information (CUI).

For some time now OCD Tech has been cautioningorganizations subject to DFARS 7012 to take the clause seriously, takeimmediate action, and be transparent with the DoD on areas of noncompliance.DFARS compliance, until recently, has been a self-assessment exercise where theDoD contractor is responsible for implementing the appropriate securitycontrols, System Security Plans, and Plans of Action and Milestones, andreporting such information back to DoD where required. Invoicing on a contractsubject to DFARS carries with it the representation that the contractor is fullycompliant. We have publishedguidance on possible prosecution under the False Claims Act. It iswell known that the court system moves slowly and that is also true here. Theallegations in question concern activities taking place in 2014 and 2015. Nowwe are starting to see the enforcement activities catch up.

Don't assume all is well with your DoD contracts. The time has come to be proactive with your DFARS compliance efforts, rather than reactive. If you are subject to DFARS 7012 and are not fully compliant with the 110 security requirements in NIST Special Publication 800-171, contact the experts at OCD Tech today to review your options. With both audits and prosecutions underway, stay out of the government's crosshairs. OCD Tech will assess where you stand today, build a roadmap to compliance for you, and guide you along the way.

Contact us today or for more information including the top 5 things you can do within your organization to achieve DFARS compliance, Click Here!

[wpforms id="10103" title="false" description="false"]

Share this post
Michael Hammond

Similar articles

CMMC

Preparing for the 180-Day Plan of Action and Milestones (PoA&M) Deadline Under CMMC

Nick Reed
December 5, 2024
4
min read
CMMC

CMMC Day, May 15th 2023

OCD Tech
May 15, 2023
1
min read
CMMC

DoD Rulemaking Update and Impact on Defense Contractors

Robbie Harriman
January 18, 2023
10
min read
CMMC

Microsoft Power Query is a Game Changer

Heads up to all of my contacts who are still in the military as either a soldier or contractor.
OCD Tech
August 10, 2021
10
min read
View all
Company
About UsBlog
About
Privacy policyCookies Settings
CONTACT US
25 Braintree Hill Office Park, Suite 407
Braintree MA, 02184info@ocd-tech.com844-623-8324
Copyright © 2025 OCD Tech