If you’re a federal contractor right now, prime or sub, large or small, 8(a), SDVOSB, WOSB – 2025 was not a routine year. The procurement landscape didn’t just shift. It got rebuilt. And the pace hasn’t slowed going into 2026.
This isn’t a policy memo. It’s a working checklist of some of the developments that are actively affecting how contractors bid, perform, certify, and stay out of legal trouble.
1. DOGE and the Mass Contract Termination Wave
Starting January 20, 2025, the Department of Government Efficiency began cutting federal agreements at a scale few had seen before. According to GovSpend data, over $329.8 billion in “base and all options value” was tied to terminated contracts, with small businesses absorbing a disproportionate share of the cuts.
A termination for convenience is not a performance failure. But it does trigger deadlines. You’re entitled to file a settlement proposal covering your allowable incurred costs plus reasonable profit on completed work. Legal experts recommend submitting termination proposals as soon as possible, rather than waiting for the full one-year window, particularly while the federal workforce remains in flux.
Action item: Review every active contract’s FAR 52.249 clause before a stop-work notice arrives.
2. DEI Certification and False Claims Act Risk
EO 14173, signed January 21, 2025, requires a certification in every new federal award and modification confirming your organization doesn’t operate DEI programs that violate federal anti-discrimination law. That certification is explicitly tied to the False Claims Act, meaning a reckless or inaccurate submission opens the door to treble damages and civil penalties.
The DOJ’s Civil Rights Fraud Initiative is already issuing Civil Investigative Demands. Title VII, VEVRAA, and Section 503 protections remain in effect; only the affirmative action obligations under the revoked EO 11246 are gone.
Action item: Audit DEI-related policies and hiring practices. Any race- or sex-based preference structure is now a risk area.
3. The Revolutionary FAR Overhaul
Executive Order 14275, signed in April 2025, launched the most comprehensive restructuring of the Federal Acquisition Regulation since its creation over 40 years ago. The mission is to strip the FAR to only what statute requires, eliminating hundreds of non-statutory provisions.
Led by the Office of Federal Procurement Policy and the FAR Council, this initiative aims to return the FAR to its statutory roots, rewrite it in plain language, and remove most non-statutory rules, with the goal of faster acquisitions, greater competition, and better results.
Phase 1 class deviations are already active. DoD issued 31 DFARS deviations effective February 1, 2026. Several clauses have already been cut, including the requirement for commercial contractors to disclose their five highest-paid executives’ compensation.
Action item: Monitor acquisition.gov/far-overhaul. Update proposal templates and compliance matrices whenever a relevant FAR Part is revised.
4. Acquisition Threshold Changes (Effective October 1, 2025)
These numbers changed, and you need them updated everywhere:
- Micro-Purchase Threshold: $10,000 → $15,000
- Simplified Acquisition Threshold: $250,000 → $350,000
- Simplified Procedures for Commercial Items (FAR 13.500): $7.5M → $9M
- Cost or Pricing Data Threshold: $2M → $2.5M
- Subcontracting Plan Threshold: $750,000 → $900,000 (construction: $1.5M → $2M)
Large business primes no longer need small business subcontracting plans on awards below $900K. Small businesses see reduced bid prep requirements across a broader range of procurements.
5. Small Business Re-Representation After M&A
FAR 52.219-28, amended January 17, 2025, requires contractors to re-represent size and socioeconomic status within 30 days of any merger, acquisition, or novation, even when the deal doesn’t directly touch the contract. Missing this window can affect your set-aside eligibility and the small business award credit flowing to your agency customer. FSS orders are exempt; everything else is not.
Action item: If any M&A activity occurred after January 17, 2025, confirm that re-representation was filed on time.
6. CMMC 2.0 Is Now Active for DoD Contractors
The DFARS rule implementing Cybersecurity Maturity Model Certification became effective on November 10, 2025. Under the current phase, contractors are required to self-attest Level 1 or Level 2 scores. Some primes are already requiring formal third-party certification from subcontractors ahead of the next mandate phase.
Three levels apply based on what data your systems handle – Level 1 (17 practices, annual self-assessment), Level 2 (110 NIST SP 800-171 practices, C3PAO assessment for certain contracts), and Level 3 (government-led assessment). Scores must be recorded in the Supplier Performance Risk System, and primes are responsible for confirming subcontractor compliance before sharing any FCI or CUI.
Action item: Run a gap analysis on every system touching federal data. Confirm your SPRS entries are current and accurate.
7. Domestic Content and False Claims Act Exposure
Buy American Act critical item content sits at 65% through 2028. The Trade Agreements Act still bars procurement from non-designated countries, including China, Russia, and India, on contracts over $183,000. The Build America, Buy America Act’s general waiver for manufactured products ended January 14, 2025, with full standards applying to federally funded infrastructure projects obligated after October 1, 2026.
False certifications of BAA, TAA, or BABA compliance are FCA violations. Whistleblowers with inside knowledge of your supply chain are the most common source of qui tam actions in this space.
Action item: Map every component to its country of origin. Update supplier agreements to include advance notice requirements and audit rights.
8. FY2026 NDAA Changes for Defense Contractors
The FY2026 NDAA, signed on December 18, 2025, raised the mandatory CAS applicability threshold from $2.5M to $35M (the full coverage threshold from $50M to $100M). The TINA threshold for DoD contracts entered into after June 30, 2026, rises from $2.5M to $10M, reducing the number of negotiations that require certified cost data. Non-traditional defense contractors now have explicit exemptions from several DFARS business system clauses, a meaningful entry point reduction for commercial firms moving into defense.
Also notable: the NDAA prohibits DoD contractors from using DeepSeek or High Flyer AI tools in contract performance. Verify your delivery operations now.
9. FCA Enforcement Is at Record Levels
The DOJ recovered over $2.9 billion under the False Claims Act in FY2024, and enforcement pressure on contractors has grown since. The three highest-risk areas today are DEI certification accuracy, termination settlement cost submissions, and domestic content certifications. Every representation your organization makes at proposal, at award, and during performance is a legal statement, not an administrative box to check.
How CyberX Gov Solutions Can Help
Keeping pace with this level of regulatory change while also writing competitive proposals, staffing cleared personnel, and maintaining a credible federal presence is a serious undertaking. At CyberX Gov Solutions, we work as an extension of your team across the full contracting lifecycle.
Whether you need compliant proposal development, cleared recruitment, a federal-ready web presence, or an end-to-end GovCon strategy through our Get Fed Ready™ program, our team brings the federal-first expertise to keep you competitive and compliant.
Frequently Asked Questions
Q1: How does CyberX help federal contractors respond to DOGE-related contract terminations?
Through our Get Fed Ready™ consulting program, we help you assess your settlement proposal eligibility, organize your incurred cost documentation, and understand your rights under the applicable FAR 52.249 clauses, all in coordination with your legal counsel. We make sure no valid recovery opportunity is overlooked.
Q2: How does the FAR overhaul affect the proposals CyberX develops for clients?
We monitor active class deviations and updates on acquisition.gov in real time. When FAR Parts covering your contract area are revised, our writers update clause references, compliance matrices, and template language accordingly. You won’t be bidding on outdated regulatory text.
Q3: Can CyberX help with small business re-representation obligations after a merger or acquisition?
Absolutely. Our Get Fed Ready™ program includes M&A compliance support, covering the 30-day re-representation requirement under FAR 52.219-28 and its downstream effects on your set-aside portfolio. We make sure this obligation doesn’t get buried in the deal process.
Q4: What does CyberX’s cleared recruitment service cover?
Our cleared recruitment team sources pre-vetted candidates with active security clearances matched to your labor categories, contract requirements, and CMMC compliance needs. We understand the intersection of personnel security and contract performance and we place talent accordingly.
Q5: Can CyberX build a website that meets federal contractor credibility standards?
Yes. Our web development service is built specifically for government contractors. We design secure, accessible, and procurement-credible digital experiences that strengthen your E-E-A-T signals with both federal evaluators and search engines, so your online presence actively supports your GovCon growth strategy.