On or about October 31, 2019, the Defense Logistics Agency (DLA) will institute a single process for accessing technical data within its Collaboration Folders (cFolders) that is subject to export-control under either the International Traffic in Arms Regulations (ITAR) or the Export Administration Regulations (EAR).  DLA will limit distribution of the export-controlled technical data to DLA suppliers that have an approved US/Canada Joint Certification Program (JCP) certification; completed the “Introduction to Proper Handling of DOD Export Controlled Technical Data Training”; the DLA “Export-Controlled Technical Data Questionnaire”; and have been approved by the DLA controlling authority to access the export-controlled data. Instructions for obtaining access to DLA export-controlled data can be found at:

Schedules consolidation: Congratulations — phase I and the end of the beginning!

Next Tuesday, Oct. 1, marks the beginning of a new era for the General Services Administration’s Multiple Award Schedule program. On that date, Phase I of MAS Consolidation will end with the issuance of a new, consolidated solicitation for the single schedule.

Phase I included a host of interrelated tasks necessary to develop a single solicitation covering the entire scope of the MAS program. Among the tasks to be accomplished were:

  1. Reviewing every term and condition in each of the 24 solicitations;
  2. Mapping duplicate Special Item Numbers (SINs) across current solicitations; and,
  3. Using North American Industry Classification System codes to reduce the current 900 SINs on 24 schedules down to approximately 300 SINs on a single solicitation.

Continue reading:

Special Edition: Changes to Procurement Fundamentals and Planning/Strategy (Part 2 of 6)

This special edition of the State Bureau of Procurement Newsletter offers highlights and need-to-know information about the change to the new SPM Manual. This is the second part of a series of special editions that will run over the next month. In this edition we are focusing on the notable changes in policies that are now in the 100-Series (Introduction and Procurement Fundamentals) and 200-Series (Planning and Procurement Strategy). This newsletter features the most notable changes; for more information about changes made to all policies, see the SPM Reform Summary, found on the ‘Other Resources’ accordion of the new SPM website.

State Procurement Manual

Special Edition: Welcome to the New State Procurement Manual (Part 1 of 6)

On August 15, 2019, the State Bureau of Procurement published the new, revised State Procurement Manual! The new Manual features updated and recategorized policies, introduces new forms and tools, and is showcased on an updated website. While the new manual has fewer pages and sections than the old version, it retains the high standards of Wisconsin public procurement that promote competition, integrity, consistency and openness. The effective date of the new Manual is September 16, 2019. This special edition of the State Bureau of Procurement Newsletter offers highlights and need-to-know information about the change to the new Manual. This is the first of a series of special editions that will run over the next month.

Transition from DUNS Number

Before the end of 2020, organizations doing business with the government—from vendors to grantees—will have a new unique number by which they will be identified, ending use of a configuration in place for nearly 60 years.

With such a significant shift affecting so many, there are many questions still left to be answered. After an information session held in late July, the General Services Administration, which manages the entity verification system, collected and answered 105 of those questions.

Some more at

Draft Version V 0.4 of the Cybersecurity Maturity Model Certification (CMMC)

The CMMC has been in development for several months in a collaborative effort with Johns Hopkins University Applied Physics Laboratory, Carnegie Mellon University Software Engineering Institute, Defense Industrial Base Sector Coordinating Council (DIB SCC), Office of Small Business Programs, as well as many others.

The CMMC effort has had a great deal of support from our industry associations such as the National Defense Industrial Association (NDIA), the Aerospace Industries Association (AIA), and the Professional Services Council (PSC) in getting the CMMC information out to the Department of Defense supply chain. We appreciate all of these efforts to secure our collective national defense.

This team has worked with the previously mentioned stakeholders to establish a robust process of collaboration to develop Draft CMMC v0.4.

The Draft CMMC v0.4 is the midpoint of development and we are requesting feedback.

The CMMC model will continue to be improved over the next several months with the collaboration of all the stakeholders with the finalization of v1.0 in January 2020.

We welcome your inputs and expect numerous comments and feedback from all stakeholders. We will take these comments into consideration as we move forward on future releases. Please understand that we may not directly address your questions and concerns with an individual written response.

We anticipate providing Draft CMMC Model v0.6 for public review in November 2019.

Please populate the comment matrix and email no later than September 25th, 2019, by 5:00pm EDT, to

The documents below include an overview briefing, the draft model, and a comment matrix.


IMPORTANT ADVANCE NOTICE: GSA On Track to Debut Consolidated Schedule Solicitation Oct. 1, 2019

This Interact post is the advance notice announcement of GSA’s intention to consolidate the current 24 Multiple Award Schedules (MAS) and release a new single Schedule for product, services, and solutions on October 1, 2019. A revised draft of the MAS solicitation is attached with applicable attachments. The solicitation has been updated based on more than 1,000 comments received to GSA’s recent requests for information. This document defines and lays out overall MAS offer evaluation criteria, requirements, and terms and conditions. It will be published in its final form on October, 1, 2019. 

Continue reading at:

DIBBS Password Requirements

Due to a change in DoD Security requirements, DIBBS will be implementing a new password requirement on or about August 29, 2019.  The new rule involves how many characters have to be changed each time a new password is being created compared to the previous password.  Currently it requires 4 characters to be changed and the new requirement will be 8 characters.  For ease of transition, below are all the requirements, including this new change, for a DIBBS password:

DIBBS Password Format

At a minimum, your password must be at least 15 characters long and can be as long as 60 characters.

Your password must contain at least 2 characters from each of the following 4 classes listed in the chart below:

    1. English Upper Case Letters: ABCDEFGHIJKLMNOPQRSTUVWXYZ
    2. English Lower Case Letters: abcdefghijklmnopqrstuvwxyz
    3. Westernized Arabic Numerals: 0123456789
    4. Non-alphanumeric (special characters) @ # $ % ^ & + . = !

Password must have no more than 4 Upper and Lower Case letters in a row, or 4 numbers in a row. (i.e. aBcD, 5678, not aBcDf or 56783)

Password must have the first 3 characters be different (i.e. abc but not aab, abb, bab, etc.)

Password cannot have more than 1 special character in a row (i.e. @@)

Password cannot begin or end with a ‘!’.  An ampersand (&) cannot be the first special character used in any position.  It can be the second or sub sequential special character used.

New password must differ from your last 10 passwords.

New password characters must differ from previous password by at least 8 characters.  A change from an upper case letter to a lower case letter and vice versa does constitute a change in a character.  

Passwords are valid for 60 days.

Passwords should not contain words from any language, because numerous password-cracking programs exist that can run through millions of possible word combinations in seconds.

Passwords should be complex, but one you can easily remember. For example, Msi5%Y0ld%ni$8! (My Son is 5 years old and is great) or Ihl1Cf20#yNi$8! (I have lived in California for 20 years now and is great). These examples will not be allowed.

Passwords should not contain personal information such as names, telephone numbers, account names, birthdates, or dictionary words.

When a new password is established, log off, then log back on with your new password.  This not only tests your password but also logs your account activity in DIBBS.  (NOTE:  If your account was locked for inactivity, a password change by itself does not count as activity.) 

It is recommended to change passwords with Internet Explorer or Firefox to avoid possible issues.