On April 10, 2026, IBM agreed to pay over $17 million to resolve allegations that it violated the False Claims Act by maintaining workforce diversity practices the Department of Justice contends constituted illegal discrimination. The settlement is the first resolution under the DOJ’s Civil Rights Fraud Initiative, launched in May 2025.

For federal contractors, the IBM settlement signals a new enforcement reality: the government now has a fully operational legal framework for treating DEI practices as fraud, and it’s using it.

  I. The Enforcement Framework

The Trump administration has built a multi-layered enforcement architecture aimed at eliminating what it defines as unlawful DEI practices in federally funded programs. Key developments include:

Executive Order 14173 (January 21, 2025) required federal contractors to certify compliance with federal anti-discrimination laws and acknowledge that compliance is “material” to the government’s payment decisions—language engineered to satisfy a key FCA proof element.

The Civil Rights Fraud Initiative (May 19, 2025) formalized the DOJ’s use of the FCA in this space and explicitly encouraged private qui tam actions against contractors maintaining what the government defines as “illegal DEI” practices.

The July 2025 AG Memorandum define prohibited conduct: race- or sex-based preferences in hiring, promotion, or compensation; diversity targets or quotas; restricted-access training or mentoring programs; and the use of demographic criteria in employment decisions.

Institutional Consolidation followed in early 2026. In January, the DOJ created a National Fraud Enforcement Division, consolidating its major fraud litigating units. In March 2026, President Trump established an interagency Task Force to Eliminate Fraud to promote qui tam actions.

Executive order 14398 (March 26, 2026) requires every federal contract and subcontract to include a clause prohibiting “racially discriminatory DEI activities,” defined as disparate treatment based on race or ethnicity in recruitment, employment, contracting, program participation), or resource allocation. The mandatory contract clause requires contractors to certify compliance, open records to inspection, report subcontractor violations, and acknowledge that compliance is material to the government’s payment decisions for FCA purposes. Violations trigger FCA liability, contract termination, and suspension and debarment. The certification deadline is April 25, 2026.

  II. What the DOJ Alleged Against IBM

The government identified four categories of practices: (1) tying bonus compensation to demographic targets through a “diversity modifier”; (2) altering interview eligibility criteria based on race or sex through “diverse interview slates”; (3) setting race and sex demographic goals for individual business units and factoring those goals into employment decisions; and (4) restricting access to training, mentoring, and leadership development programs on the basis of race or sex.

These categories track the July 2025 AG Memorandum closely and reflect program structures that continue to appear in organizational DEI initiatives. Any federal contractor maintaining programs that resemble these categories should assume it is operating within the DOJ’s enforcement zone.

IBM is one of the largest federal contractors in the country, with annual contract awards exceeding $1 billion. The company cooperated with the investigation, conducted an independent internal review, made early disclosures, and voluntarily terminated the programs at issue. It denied wrongdoing and did not admit liability. Despite this cooperation, the damages multiplier exceeded 2x, above the benchmark for typical FCA settlements. The DOJ will evaluate damages flexibly in DEI-FCA cases, considering the full value of affected contracts, the cost of discriminatory programs passed through to the government, or a hybrid approach.

  III. What Federal Contractors Should Do Now

1. Audit your DEI programs under privilege before April 25. Conduct a cross-functional audit, under attorney-client privilege, of hiring, promotion, training, mentoring, compensation, and procurement programs to identify any practice that ties decisions or opportunities to protected characteristics. The IBM settlement’s four categories provide the clearest guidance on what the DOJ considers actionable.
2. Treat every certification as a litigation event. The certifications required by EO 14173 and EO 14398 are the predicate for FCA liability. A contractor that certifies compliance while maintaining programs the DOJ considers prohibited is creating the very false claim the government needs to open an investigation. Certifications should be reviewed by counsel, supported by documented audit findings, and signed only after confirming alignment with DOJ guidance.
3. Prepare for qui tam exposure. The DOJ has repeatedly invited private whistleblowers to bring FCA actions. Unlike traditional procurement fraud, alleged DEI violations are likely visible to a broader swath of employees. The FCA’s qui tam provisions allow relators to share in recoveries. Every internal complaint touching DEI practices should be evaluated as a potential FCA precursor.
4. Push compliance downstream to subcontractors. EO 14398 extends certification requirements to subcontractors at all tiers, with an affirmative obligation on primes to report any subcontractor’s “known or reasonably knowable conduct” that may violate the clause. Update your subcontracts to include nondiscrimination clauses, certification obligations, and audit rights.
5. Prepare for civil investigative demands. The DOJ has been issuing CIDs to federal contractors across multiple industries. Establish document preservation procedures, privilege review workflows, and designated response teams now.
6. Do Not Overcorrect. EO 14398 prohibits unlawful DEI activities, but a DEI program, by itself, is not unlawful. Title VII, state anti-discrimination statutes, and the Equal Protection Clause still prohibit discrimination against individuals from all backgrounds. Eliminating programs through disparate treatment or retaliating against employees who participated in prior initiatives creates separate legal exposure.

Finally, federal contractors should recognize that DEI-related enforcement risk extends beyond the FCA. The EEOC has signaled an aggressive posture, including commissioner-initiated charges that do not depend on individual employee complaints. Private litigation risk has also increased, as plaintiffs’ attorneys bring so-called “reverse discrimination” claims under Title VII. The convergence of federal enforcement, regulatory action, and private litigation creates a multi-front environment that requires coordinated legal strategy.

The IBM settlement confirms what the administration has been telegraphing since May 2025: the enforcement framework is operational, the government is willing to use it, and the financial consequences are significant. Contractors that act now will be positioned to manage this evolving enforcement landscape. Those that wait will be responding to it.

If you have questions about DEI compliance or False Claims Act litigation, please contact your SGR attorney or Sam Mitchell at Smith, Gambrell & Russell, LLP.