Delaware has implemented an automated system to clear over 64,000 eligible criminal cases under its Clean Slate law, significantly accelerating the expungement process compared to previous manual methods. This initiative involves coordination among multiple state agencies, including DELJIS, SBI, ODS, and the Delaware Courts, aiming to reduce barriers to employment, housing, and education for affected individuals. The state plans to address a backlog of over one million cases by August 2026, highlighting a substantial modernization effort in criminal justice record management.
This automation effort demonstrates a growing procurement focus on digital transformation and interagency data integration within state criminal justice systems.
Procurement professionals should note the importance of accurate data handling, system interoperability, and safeguarding sensitive information in similar projects.
Vendors specializing in justice information systems, automation technologies, and secure data processing may find emerging opportunities in state-level criminal justice modernization.
The initiative underscores the need for ongoing collaboration between government entities and technology providers to meet legislative mandates and improve public service delivery.
The goal of our criminal justice system is not to punish people; it is to change their behavior and give them the tools to succeed when they reenter society. People should not be defined by their worst mistakes, and a low-level conviction should not be an automatic ticket to a life with roadblocks.
— Matt Meyer, Governor
This milestone reflects the importance of accurate data, interagency coordination, and careful safeguards.
— Dominic Carretto, Executive Director of the Delaware Criminal Justice Information System
Agencies
Delaware Criminal Justice Information System, State Bureau of Identification, Delaware Office of Defense Services, Office of the Governor, Delaware Courts
๐ค
Artificial Intelligence
โ
Regulatory Compliance
๐ป
Information Technology
The Government of Canada is set to launch a comprehensive Artificial Intelligence (AI) strategy emphasizing trust, privacy, and online safety. This strategy includes new legislation to regulate AI technologies, initiatives to improve AI literacy, support for domestic AI companies, development of sovereign compute infrastructure, and addressing labor market impacts. These actions create procurement opportunities for contractors specializing in AI training programs, infrastructure development, compliance solutions, and privacy technologies.
The strategy is led by key federal ministers including the Minister of Artificial Intelligence and Digital Innovation and involves multiple government entities such as the Canadian Centre for Cyber Security.
Procurement professionals should anticipate upcoming solicitations related to AI infrastructure, privacy compliance tools, and workforce training services.
Contractors with expertise in AI ethics, privacy legislation compliance, and sovereign computing capabilities may find new business opportunities.
Organizations should prepare for engagement in AI-related procurements centered in Ottawa, Ontario, reflecting the federal government's focus on domestic AI advancement and regulation.
๐ค
Artificial Intelligence
๐
Cybersecurity
๐ป
Information Technology
President Donald Trump signed an executive order mandating that developers of advanced AI models provide the U.S. government with early, pre-release access to their AI systems for safety and national security testing. This voluntary, phased review process requires key federal agencies to define criteria for AI models subject to review and sets a 30-day pre-release access period. The policy aims to enhance national cybersecurity and vulnerability management by enabling government and critical infrastructure partners to evaluate AI risks before public release. This initiative creates new federal contracting opportunities for AI technology evaluation, security testing, and infrastructure protection services.
Why this matters: Federal agencies including NIST, DoD, DHS, CISA, and the White House Office of the National Cyber Director will lead implementation, creating demand for contractors specializing in AI safety, cybersecurity, and compliance support.
AI developers such as OpenAI, Google DeepMind, Anthropic, and Meta are now subject to early access requirements, signaling a shift toward increased government oversight and collaboration in AI deployment.
Procurement professionals should prepare for solicitations related to AI model evaluation frameworks, security testing services, and infrastructure resilience enhancements.
Organizations can leverage this policy to position themselves as trusted partners in AI risk management and federal cybersecurity initiatives.
The Department of Defense has codified the Cybersecurity Maturity Model Certification (CMMC) program in 32 CFR Part 170, establishing mandatory cybersecurity standards and assessment requirements for defense contractors and subcontractors handling Federal Contract Information (FCI) and Controlled Unclassified Information (CUI). Compliance with CMMC Levels 1 through 3 is required, with assessments conducted by authorized third-party organizations or government entities such as the Defense Contract Management Agency's Defense Industrial Base Cybersecurity Assessment Center (DCMA DIBCAC). Noncompliance risks include potential federal fraud charges under the False Claims Act, emphasizing the critical need for accurate cybersecurity posture representation and proactive certification.
Why this matters: Defense contractors must maintain appropriate CMMC certification to remain eligible for DoD contracts, with compliance flowing down all supply chain tiers.
The codification of CMMC in federal regulation formalizes assessment scope, scoring, and ongoing compliance affirmation, increasing enforcement rigor.
Organizations should engage with authorized assessors and ensure timely certification to avoid contract disqualification and legal penalties.
Procurement professionals should incorporate CMMC requirements into contract solicitations and compliance monitoring to mitigate risk and ensure supply chain security.
The 2026 Cyber Benchmark report by Wavestone highlights incremental improvements in cybersecurity maturity among large organizations across Europe, with the financial sector leading due to regulatory drivers such as the Digital Operational Resilience Act (DORA). Despite advances in governance, risk management, detection, incident response, and resilience, significant challenges persist in securing artificial intelligence systems, managing third-party risks, and achieving full compliance with the European Network and Information Security Directive 2 (NIS 2). This report underscores ongoing demand for cybersecurity consulting services and technology solutions to address these gaps.
Procurement professionals should note the heightened regulatory pressures in the European financial sector, which are driving increased cybersecurity investments and contract opportunities.
Organizations providing AI security, third-party risk management, and compliance solutions aligned with NIS 2 requirements may find expanding market demand.
The report's geographic focus on France, Belgium, Hungary, and Italy indicates regional procurement trends and potential cross-border collaboration opportunities.
Cybersecurity service providers and vendors can leverage these insights to tailor offerings that address evolving governance and resilience needs in regulated industries.
The Department of Defense (DoD) has fully implemented the Cybersecurity Maturity Model Certification (CMMC) 2.0 framework as a mandatory compliance requirement for all contractors handling Controlled Unclassified Information (CUI). Effective November 10, 2025, phased deadlines require contractors to meet tiered cybersecurity standards, including mandatory third-party assessments by November 2026 for most contracts. Noncompliance or misrepresentation of compliance exposes contractors to significant civil and criminal penalties, emphasizing the need for documented, auditable cybersecurity programs. This enforcement impacts all DoD solicitations and contracts, including those managed by the Defense Contract Management Agency (DCMA) and overseen by the Defense Industrial Base Cybersecurity Assessment Center (DIBCAC).
Contractors must establish and maintain documented cybersecurity controls that are demonstrable and auditable to pass required assessments.
Procurement professionals should ensure contract solicitations explicitly incorporate CMMC 2.0 requirements and verify contractor compliance to mitigate legal and operational risks.
Organizations currently engaged in or pursuing DoD contracts should prioritize immediate implementation or enhancement of cybersecurity programs to meet CMMC deadlines.
Legal and compliance teams must be aware that knowingly misrepresenting compliance constitutes criminal fraud, increasing the stakes for accurate reporting and audit readiness.
๐
Contracting Vehicles
๐
Policy
๐
Cybersecurity
๐ค
Artificial Intelligence
๐ก๏ธ
Defense & Military
๐ฅ
Healthcare
๐ป
Information Technology
Congressional defense committees are actively marking up the Fiscal Year 2027 National Defense Authorization Act (NDAA), with the House Armed Services Committee beginning markup on June 4, 2026, followed by the Senate Armed Services Committee markup scheduled for the following week. The NDAA proposals include a historic $1.5 trillion Senate budget and a $1.15 trillion House budget, focusing on military modernization, industrial base revitalization, supply chain security, and emerging technologies such as AI and missile defense systems. Key provisions authorize multiyear procurements of major platforms including fighter jets, naval vessels, and missile defense systems, alongside enhancements to military health care, family support programs, and cybersecurity initiatives. The NDAA also addresses workforce development and contracting preferences favoring U.S. companies, signaling significant procurement opportunities and policy shifts for defense contractors and industry stakeholders.
Why this matters: The NDAA sets the legal and budgetary framework for defense spending and procurement priorities for fiscal year 2027, directly impacting contract awards, program funding, and industry engagement.
The markup process and subsequent negotiations between House and Senate versions will shape final funding levels and procurement authorizations, requiring contractors to track legislative developments closely.
Provisions supporting modernization of nuclear deterrence, AI integration, missile defense, and supply chain resilience highlight emerging areas for technology and defense system providers.
Health care and family support reforms under the NDAA may influence contracting opportunities within military health services and related support sectors.
Industry stakeholders should prepare for potential multiyear contract solicitations and increased emphasis on U.S.-based industrial base strengthening and cybersecurity compliance.
๐
Cybersecurity
๐ค
Artificial Intelligence
๐ก๏ธ
Defense & Military
๐ป
Information Technology
Avint has appointed former FBI Chief Information Officer Jeff Bauerlein as Chief Strategy Officer to strengthen its federal cybersecurity and artificial intelligence capabilities. This leadership addition signals Avint's strategic commitment to expanding its role in federal cybersecurity modernization, including Zero Trust architectures, AI governance, and cloud transformation across defense, intelligence, and civilian agencies. Procurement professionals should note Avint's enhanced positioning to compete for federal contracts requiring integrated cybersecurity and AI solutions.
Avint's leadership expansion reflects growing federal demand for advanced cybersecurity and AI modernization services.
Agencies seeking Zero Trust and AI governance solutions may encounter increased competition from Avint.
Contractors should evaluate opportunities aligned with federal cybersecurity modernization initiatives where Avint is now strategically focused.
This development underscores the importance of experienced federal technology leadership in shaping vendor capabilities and contract competitiveness.
๐
Cybersecurity
๐ฐ
Grants & Funding
๐ป
Information Technology
๐จ
Public Safety
The U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has initiated a 60-day public comment period in mid-2026 to evaluate the State and Local Cybersecurity Grant Program (SLCGP), which has provided $1 billion in funding over four years to enhance cybersecurity capabilities of state, local, and territorial governments. This evaluation aims to assess the program's implementation, effectiveness, and challenges to inform future funding decisions as the program's active funding phase concludes in FY 2026 with the final performance period ending in FY 2029. Concurrently, the House Homeland Security Subcommittee held a hearing emphasizing the critical need to reauthorize and expand the SLCGP to address escalating cyber threats, including those involving artificial intelligence, and to support workforce development, shared services procurement, and information sharing across jurisdictions. State technology officials from Tennessee, Florida, and New York highlighted their investments in cybersecurity operations centers and workforce training, underscoring the importance of federal partnership and flexible grant usage to enhance cyber resilience, especially in rural and under-resourced communities.
Why this matters: Procurement professionals should anticipate potential reauthorization and increased funding for the SLCGP, which will drive demand for cybersecurity solutions, workforce development services, and shared services models at state and local levels.
The evaluation and public comment period indicate forthcoming adjustments to grant requirements and priorities, suggesting opportunities for vendors to align offerings with evolving federal and state cybersecurity needs.
Organizations supporting state and local governments should prepare for expanded collaboration opportunities with CISA and related entities like MS-ISAC to facilitate information sharing and rapid response capabilities.
Procurement planning should consider the integration of AI-related cybersecurity tools and flexible funding mechanisms to address emerging threats highlighted in congressional discussions.
โ
Regulatory Compliance
๐
Cybersecurity
๐ป
Information Technology
Government agencies and cybersecurity teams across the European Union, China, and the United States are preparing to implement and manage emerging AI regulatory requirements that vary significantly by jurisdiction. The EU has enacted a comprehensive risk-based AI Act, China is balancing AI innovation with social control measures, and the U.S. currently lacks unified federal AI regulations, resulting in a complex patchwork of state-level mandates. Procurement and compliance professionals must adopt modular, risk-based technical controls such as AI model inventories, telemetry monitoring, and vendor assurance processes to effectively navigate these diverse regulatory landscapes and mitigate operational risks.
Why this matters: Agencies and contractors operating internationally or across U.S. states face increasing complexity in AI compliance, requiring adaptable and scalable control frameworks.
Organizations should prioritize procurement of AI governance tools and services that support risk-based compliance and cross-jurisdictional reporting.
This environment creates demand for cybersecurity and compliance vendors offering modular solutions tailored to evolving AI regulations.
Procurement strategies must incorporate flexibility to address fragmented AI rules and vendor assurance requirements across multiple regions.
A report from the Canadian Anti-Monopoly Project highlights significant risks of market concentration among a few dominant cloud providersโsuch as Google, Amazon, and Microsoftโin Canada's AI sector. The report urges the Government of Canada to adopt procurement policies that emphasize interoperability and portability standards to mitigate vendor lock-in and foster a more competitive AI ecosystem. This development signals a strategic shift in government procurement to support diversified cloud sourcing and competitive AI technology adoption.
Procurement professionals should anticipate increased requirements for cloud interoperability and portability in AI-related contracts to reduce dependency on single vendors.
Contractors and vendors may need to demonstrate compliance with standards that enable multi-cloud flexibility and data portability to remain competitive.
This focus on competition and vendor diversity could open opportunities for smaller or alternative cloud providers in the Canadian AI market.
Organizations involved in AI procurement should evaluate their cloud strategies in light of potential policy changes promoting a more balanced vendor landscape.
