United States Office of Personnel Management

Slides:



Advertisements
Similar presentations
Privacy Impact Assessment Future Directions TRICARE Management Activity HEALTH AFFAIRS 2009 Data Protection Seminar TMA Privacy Office.
Advertisements

WELLIGENT SPECIAL EDUCATION ASSESSMENT plan TRAINING
What is a Classified Contract?
Human Capital Investment Programme Disability Activation Project (DACT) WELCOME Support Workshop Thursday 7 th February
Contract Fundamentals at Fresno State Doug Carey, Grants Administrator Office of Research and Sponsored Programs California State University, Fresno.
FAA Office of Airports Airport Fuel Storage and Handling
U.S. DEPARTMENT OF LABOR EMPLOYMENT AND TRAINING ADMINISTRATION ARRA GREEN JOB AND HEALTH CARE / EMERGING INDUSTRIES NEW GRANTEE POST AWARD FORUM JUNE.
Subchapter M-Indian Self- Determination and Education Assistance Act Program Part 273-Education Contracts under Johnson-OMalley Act.
1 Recruiters and Voting Recruiting Offices as Voter Registration Agencies.
2 1.Client protection principles 2.Principle #6 in practice 3.The client perspective 4.Participant feedback 5.Tools for improving practice 6.Conclusion.
Institutional Animal Care and Use Committee (IACUC)
Contract Security Classification Specification
Annual Security Refresher Briefing Note: All classified markings contained within this presentation are for training purposes.
State Monitor Advocate
September 22, 2010 Updates New Hire/Rehire Documents.
File Management Tips and Suggestions FISWG/NCMS Winter Training Event December 17 th, 2014 Dela Williams Facility Security Officer.
Section Six: Foreign Ownership, Control, or Influence (FOCI)
Industrial Security 2010 Worldwide Security Conference.
ISP Preparation Series 1 – Chapter 7. NISPOM Chapter 7 – Subcontracting Acronyms CSCS:Contract Security Classification Specification (DD Form 254) CSA:Cognizant.
Guidelines for Preparing an NIH Budget
Defense Security Service Facility Clearance Branch (FCB)
Defense Security Service. DSS Update DSS Changing With A Changing Security Environment.
Helen MacDonald L-3 Communications.  Determination that company is eligible for access to classified information or award of classified contract at same.
NISPOM Update for JSAC Workshop
Join the conference call by dialing the conference number in your Invitation or Reminder s. Please put your phone on mute. Please stand by! The webinar.
Records Emergency Planning and Response Webinar Session 2 Join the conference call by dialing the conference number in your Invitation or Reminder s.
MANAGING FACILITY CLEARANCES AND CHANGES OF CONTROL Mary Beth Bosco Patton Boggs LLP 2550 M Street, N.W. Washington, D.C
VETERANS BENEFITS ADMINISTRATION AVECO July 14 – 18, 2014 Centralized Certification.
Clearance Processing Back To The Basics Presented By Mallory Howard
Section Four: Employee and Visitor Access Controls Note: All classified markings contained within this presentation are for training purposes only.
Joint Personnel Adjudication System (JPAS) Overview
Overview of Regulated Garbage
NISPOM CHAPTER 3 SECURITY TRAINING AND BRIEFINGS
Form I-9 Process An Online Training for Supervisors and Designees Presented by Human Resources Revised November 2009.
National Contract Management Association – Norfolk Chapter Contracting Ground Rules.
Florida Industrial Security Workgroup Self-Inspections What are Self-Inspections Why should Self-Inspections be conducted When should Self-Inspections.
1 Creating a Joint Personnel Adjudication System (JPAS) Analysis Report Michael S. Campbell Industrial Security Specialist Defense Security Service San.
Network Centric Enterprise Public Trust Information and Navy Enterprise Resource Planning Presented to the Small Business and Industry Outreach Initiative.
Security Education and Awareness Security 101 February 28, 2007 JSAC.
ISP Preparation Series 1 – Chapter 6. NISPOM Chapter 6 – Visits & Meetings Section 1: Visits General (6-100)  When it is anticipated that classified.
Thank You for Joining Us, The Webinar Will Begin Shortly. The Fast Track to Facility Clearance Presented by: Cindy Brook While you are waiting please check.
OFFICE OF THE UNDER SECRETARY OF DEFENSE FOR INTELLIGENCE CI & SECURITY DIRECTORATE, DDI(I&S) Valerie Heil March 20, 2015 UNCLASSIFIED Industrial Security.
Defense Security Service New Rating Process Current as of 10/19/2011.
ISP Preparation Series 3- Chapter 6. NISPOM Chapter 6- Visits and Meetings  General- anticipate discussion  Classified visits- minimum and.
PERFORMING ON CLASSIFIED CONTRACTS.
OFFICE OF THE UNDER SECRETARY OF DEFENSE FOR INTELLIGENCE CI & SECURITY DIRECTORATE, DDI(I&S) Valerie Heil August 12, 2014 UNCLASSIFIED NISPOM Update.
Section Five: Security Inspections and Reviews Note: All classified markings contained within this presentation are for training purposes only.
NISPOM Update for NCMS November 2012
1 Personnel Security 2007 Data Protection Seminar TMA Privacy Office HEALTH AFFAIRS TRICARE Management Activity.
Revised 12/27/13 Supplier/Vendor Instruction Manual Presented by Department of General Services, Procurement Division Office of Small Business & DVBE Services.
Federal Aviation Administration Presented to: By: Date: Oversight Throughout the Supply Chain: Is It Adequate? DOT OIG Audit: Assessment of FAA's Risk-Based.
Developing Plans and Procedures
The Post Service Officer VFW Department Convention June 2010.
1. Module Rev.F1 2  The Integrated Safety Management System (ISMS) is a systematic, common sense approach to working safely. The objective of.
Sample only Order at Security Awareness Training A threat awareness briefing. A defensive security briefing. An overview of the.
1 Privacy Plan of Action © HIPAA Pros 2002 All rights reserved.
SECURITY BRIEFING A threat awareness briefing A defensive security briefing An overview of the security classification system Employee reporting obligations.
Managing a “Data Spill”
How To Conduct An Administrative Inquiry (AI) Due To A Security Violation
Department of Community and Human Services Developmental Disabilities Division.
Hot Topics: Ten Things You Need to Know
Managing a Security Container
Providing Access to Your Data: Handling sensitive data
NISPOM Basics What You Need to Know!
Proposal Routing Overview
Derivative Classification Overview
Defense Security Service Facility Sponsorship Process for a sponsor and sponsored company October, 2017 Presented by: Jeremy Hargis Defense Security.
DSS Security Ratings Matrix
AN OVERVIEW OF THE INDUSTRIAL SECURITY PROGRAM
Export Controls – Export Provisions in Research Agreements
Presentation transcript:

United States Office of Personnel Management Facility Clearance Breakout Session A Way Forward By: Presenter: John Hartigan Date: July 31st, 2013

Discussion Topics What You Should Know First Key Management Personnel What is a Facility Clearance (FCL) NISPOM Agreement What You Should Know First How The FCL Process Is Initiated Corporate Basics Key Process Actions Getting Started FCL Timeline Key Management Personnel FSO Responsibilities and Training FSO Training Guidance Training Critical to FSO Execution Self Inspections Reporting Changes Common Misconceptions FCL & FSO Process Takeaways Who to Contact: Defense Security Services (DSS)

Acronyms You Will Hear: CDSE – Center for Development of Security Excellence CSA - Cognizant Security Agency DISCO - Defense Industrial Security Clearance Office DSS – Defense Security System FCL – Facility Clearance: Confidential, Secret, Top Secret FSO – Facilities Security Officer IS Rep – Industry Security Representative KMP - Key Management Personnel NISPOM - National Industrial Security Program Operating Manual, commonly referred to as the NISPOM PCL – Personal Clearance Level STEPP - Security Training, Education and Professionalization Portal

What is a Facility Clearance (FCL) According to DoD Defense Security Service a facility clearance (FCL) is an administrative determination that, from a national security standpoint, a facility is eligible for access to classified information at the same or lower classification category as the clearance being granted. The FCL may be granted at the Confidential, Secret, or Top Secret level. The FCL includes the execution of a Department of Defense Security Agreement (DD Form 441).

NISPOM Agreement What the Government Agrees To: Under the terms of the agreement, the Government agrees to issue the FCL and inform the contractor as to the security classification of information to which the contractor will have access. What the Contractor Agrees To: The contractor, in turn, agrees to abide by the security requirements set forth in the National Industrial Security Program Operating Manual, commonly referred to as the NISPOM.

What You Should Know First About the FCL Granting Process Can my organization initiate the FCL process?: No, a contractor or prospective contractor cannot apply for its own facility clearance. When is the right time to begin the process? When a classified procurement is definite and a need has been established, the Government, or cleared contractor in the case of subcontracting, may request the clearance

How the FCL Process is Initiated There are two methods of FCL Sponsorship: Government Sponsorship: Where the government acts as your sponsor. Industry Partner Sponsorship: when a relationship is formed with an industry partner to procure an FCL.

Corporate Basics Location: The company must be organized and existing under the laws of any of the fifty states, the District of Columbia, or Puerto Rico, and be located in the United States or its territorial areas. Number of Locations: Single or multiple locations Parent-Subsidiary Relationships: When a parent-subsidiary relationship exists, the parent and the subsidiary will be processed separately for an FCL. As a general rule, the parent must have an FCL at the same, or higher, level as the subsidiary. Collocation Procedures: When a parent or its cleared subsidiaries are collocated, a formal written agreement to use common security services may be executed by the two firms, subject to the approval of the CSA. Must Be Incorporated: Ccorporations, LLC’s etc

Key Process Actions TIP#1: Simple is better Execute CSA-designated forms. Process key management personnel for PCLs. Appoint a U.S. citizen employee as the FSO. TIP#1: Simple is better

Getting Started TIP#2: Use Industry Forms & Templates by DSS Submission of Sample Sponsorship Letter Processing of Sponsorship Package Government CAGE Code Request by Government Preparation of DSS Visit Preparation of Organizational Documentation/Information Personnel Security Clearance: Key Management Personnel (KMP) must be cleared Processing of Fingerprint Cards (FD 258) Processing of DSS Facility Process Form TIP#2: Use Industry Forms & Templates by DSS http://www.dss.mil/isp/tools.html

FCL Timeline Varies *FCL Timeline can be anywhere from 6 - 12 months Sample Sponsorship Letter (30 Days) Sponsorship Package (60 Days) CAGE Code Request Complete DSS Visit (10 Days) Prep of Org Docs Personnel Security Clearance: (KMP) must be cleared (90 Days) Processing Fingerprint Cards Processing DSS Facility Process Form *FCL Timeline can be anywhere from 6 - 12 months

Key Management Personnel Must be US Citizens Individually Cleared to level of FCL request prior to the FC request Formally excluded and approved by the CSA Non Foreign ownership processing

FSO Responsibilities and Training FSO Duties: The contractor shall appoint a U.S. citizen employee, who is cleared as part of the facility clearance (FCL) to be the FSO. The FSO will supervise and direct security measures necessary for implementing applicable requirements of this Manual and related Federal requirements for classified information. FSO Training Requirements: Contractors shall be responsible for ensuring that the FSO, and others performing security duties, complete security training considered appropriate by the CSA (Cognizant Security Agency). Training requirements shall be based on the facility's involvement with classified information and may include an FSO orientation course and for FSOs at facilities with safeguarding capability, an FSO Program Management Course. Training, if required, should be completed within 1 year of appointment to the position of FSO.

FSO Training Guidance 3-103. Government-Provided Briefings: The CSA is responsible for providing initial security briefings to the FSO and for ensuring that other briefings required for special categories of information are provided. 3-104. Temporary Help Suppliers: A temporary help supplier, or other contractor who employs cleared individuals solely for dispatch elsewhere, shall be responsible for ensuring that required briefings are provided to their cleared personnel. The temporary help supplier or the using contractor may conduct these briefings.

FSO Training Guidance 3-105. Classified Information Nondisclosure Agreement (SF 312): The SF 312 is an agreement between the United States and an individual who is cleared for access to classified information. An employee issued an initial PCL must execute an SF 312 prior to being granted access to classified information. The contractor shall forward the executed SF 312 to the CSA for retention. If the employee refuses to execute the SF 312, the contractor shall deny the employee access to classified information and submit a report to the CSA. The SF 312 shall be signed and dated by the employee and witnessed. The employee's and witness' signatures must bear the same date.

FSO Training Guidance (cont.) 3-106. Initial Security Briefings: Prior to being granted access to classified information, an employee shall receive an initial security briefing that includes the following: A threat awareness briefing A defensive security briefing An overview of the security classification system Employee reporting obligations and requirements Security procedures and duties applicable to the employee's job

FSO Training Guidance (cont.) 3-107. Refresher Training: The contractor shall provide all cleared employees with some form of security education and training at least annually. Refresher training shall reinforce the information provided during the initial security briefing and shall keep cleared employees informed of appropriate changes in security regulations. Training methods may include group briefings, interactive videos, dissemination of instructional materials, or other media and methods. Contractors shall maintain records about the programs offered and employee participation in them. This requirement may be satisfied by use of distribution lists, facility/department-wide newsletters, or other means acceptable to the FSO. 3-108. Debriefings: Contractors shall debrief cleared employees at the time of termination of employment (discharge, resignation, or retirement); when an employee's PCL is terminated, suspended.

Training Critical to FSO Execution (STEPP) Security Training, Education and Professionalization Portal Critical Note: “The DoD 5200.1-R, 'Information Security Program,' has been superseded by DoD Manual 5200.01, Volumes 1-4, 'DoD Information Security Program,' dated February 24, 2012. CDSE is working to update all courseware, but please be aware that until all updates are completed, there will be references to DoD 5200.1-R.” The STEPP system is a learning management system where a list of courses is maintained and provided to students in addition to tracking student information and course transcripts. Please be advised that CDSE courses are intended for use by Department of Defense and other U.S. Government personnel and contractors within the National Industrial Security Program. http://www.cdse.edu/stepp/index.html

Self Inspections Can the government conduct assessments of a cleared facility? Periodic security vulnerability assessment of all cleared contractors are conducted by the assigned IS Rep to ensure that safeguards employed by contractors are adequate for the protection of classified information. The IS Rep will determine the frequency of such formal assessment, but an assessment will normally be conducted annually. TIP #3: Self Inspections is recommended semi-annually and 30 days prior to DSS Inspection.

Reporting Changes Changes are always reported to the DSS Representative. If unsure, ask your DSS Representative, Don’t Wait Changes to KPM List Adverse Information Breeches (security or information) Spills SF 312 NDAs

Common Misconceptions No Direct Cost to the Contractor All FCLS are the same unless…. Indirect Costs FSO, training programs and security requirements Level of effort delta for Possessing and Non-Possessing FCLS Our organization doesn’t need a sponsor Lead time isn’t critical to process time

FCL Process Takeaways Find a Sponsor: first step to getting started Leverage DSS Support Staff: tools (templates and checklists), and industry programs to ensure seamless application processing Follow the Process: take special care to have all of your forms, designated KPM, FSO training completed Be realistic about your FCL timeline: depending on how complicated your organization is, and the clearance your are seeking will dictate your timeline

FSO Training Takeaways Finding FSO Training: FSO training is provided online through STEPP. Some classes may also be taught live but all the required classes are available online. FSO Training Compliance : FSO’s at possessing facilities have to complete 17 courses and pass associated exams – estimated length of the classes is over 42 hours. Non-possessing facility FSO’s have to complete 13 courses and exams that will take over 34 hours. Get Trained: Courses include using JPAS for personal clearances, e-FCL to check facility clearances, security education and training, understanding foreign influences, reporting and inspections. Possessing facility training includes courses on marking and handling classified materials.

FSO Training Takeaways Know the NISPOM: Read and know the NISPOM is key to being a successful FSO and having a successful security program. The NISPOM contains the regulations and requirements that must be followed in your security program. IS Letter: I recommend you print a copy for easy access as you will access it regularly. Be sure to review and have handy the Industrial Security Letters which add and explain various parts of the NISPOM.

Who To Contact at DoD Defense Security Services (DSS) Defense Security Service DSS is the Defense Department: Overseas and manages the security program at contractor organizations and investigates breeches of security. Security Division 27130 Telegraph Rd. Quantico, VA 22134 571-305-6753 Defense Industrial Security Clearance Office DISCO: Provides personnel and facility clearance reviews and approvals. 600 10th Street, Fort Meade, MD, 20755 or faxed to (301) 833-3912 DoD Security Services Call Center (888) 282-7682 CDSE Center for Development of Security Excellence. Provides training for security personnel at contractor and government organizations.

References Defense Security Services: Facility Clearance Branch http://www.dss.mil/isp/fac_clear/fac_clear.html National Industrial Security Program Operating Manual, commonly referred to as the NISPOM. http://www.dtic.mil/whs/directives/corres/pdf/522022m.pdf STEPP Security Training, Education and Professionalization Portal http://www.cdse.edu/stepp/index.html Self Inspection Handbook https://depts.washington.edu/uwfso/reference/Self_Inspection_Handbook_Oct_2006.pdf Industry partners and Vendors

Contact Information John Hartigan John.hartigan@technologymanagementgroup.net (757) 575-9404

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.