Presentation is loading. Please wait.

Presentation is loading. Please wait.

Section Ten: Security Violations and Deviations Note: All classified markings contained within this presentation are for training purposes only.

Published byAlbert King Modified over 8 years ago

Similar presentations

Presentation on theme: "Section Ten: Security Violations and Deviations Note: All classified markings contained within this presentation are for training purposes only."— Presentation transcript:

1 Section Ten: Security Violations and Deviations Note: All classified markings contained within this presentation are for training purposes only.

2 Security Violations and Deviations Definitions Security Violation – Any failure to comply with an established policy or procedure that reasonably could result in the loss or compromise of classified or sensitive information – A compromise is the disclosure of classified or sensitive information to an unauthorized person Security Deviation – Any failure to comply with an established policy or procedure that would not result in the loss or compromise of classified or sensitive material – Any action that would have a negative impact on the {Company}’s security posture

3 Security Violations and Deviations Examples A loss or compromise of classified information Failure to protect the security of a computer or network Failure to properly dispose classified material Failure to properly secure a Closed Area or Security Container Failure to secure classified materials Failure to properly transport classified material, either internally or externally of the facility Failure to properly mark classified material Failure to sanitize a Closed Area prior to an uncleared visitor entering Inadvertently disclosing classified information to individuals that do not have the proper need-to-know or security clearance Failure to report a violation

4 The human element Distractions, fatigue, change in routine, and lack of focus Lack of training Incomplete/mismarked classified information Mechanical External personal circumstances Security Violations and Deviations Contributing Factors Not following procedures

5 Security Violations and Deviations Prevention Tips Always ensure your security container is properly locked Only remove classified material from your container when it is needed and returned immediately when not in use Always check your entire area for the presence of classified material before leaving the area unattended Use a Security Record as a reminder to check your container Use the open/closed signs on Closed Area doors and security containers Reduce your classified holdings to the absolute minimum

6 Do not work alone after normal working hours with classified material ‒If necessary, arrange with the Security Department first Never delay placing the appropriate classification markings on rough drafts, working papers, etc. Ensure notes extracted from classified documents are classified, appropriately marked and protected Always use classified folders and coversheets, when material is removed from security containers Ensure all electronic media is properly marked and secured after use Security Violations and Deviations Prevention Tips (cont.)

7 Security Violations and Deviations {Company} Obligations To maintain its security posture and meet its security obligations to the U.S. Government, {Company} retains the right to take immediate action to prevent the loss or compromise of classified or sensitive information Once individual culpability for a security violation or deviation is determined through investigation, the Security Department management will assess the implications of the event for the individual and the {Company} security posture {Company} has a graduated scale of administrative sanctions that will be taken for failing to adhere to established security rules and regulations

8 Security Violations and Deviations Administrative Sanctions Sanctions are determined by the offense and are on a graduated scale (See local SPP for details) Sanction examples: – Verbal or written counseling by Security, immediate supervisor, {Company} president or a combination – Information restrictions – Project access restrictions – Required training – Suspension without pay – Clearance termination or job change – Removal from contract – Employment termination – Imprisonment and/or fines

9 Security Violations and Deviations Individual Culpability Reporting individual culpability to the Department of Defense ‒{Company} is required to identify the culpable party(s) to a security violation where there is an issue of the individual’s future reliability Determination to forward a culpability report occurs when one or more of the following factors are revealed: ‒The violation involved a disregard of security requirements, gross negligence in the handling of classified information, or a pattern of negligence or carelessness even though the incident was not deliberate Security Violations are costly, but can be prevented by ensuring all individuals remain aware of their security responsibilities ‒Ignorance will not excuse you from disciplinary action or criminal prosecution

Download ppt "Section Ten: Security Violations and Deviations Note: All classified markings contained within this presentation are for training purposes only."

Similar presentations

Identification and Disposition of Official University Records University of Texas at Arlington Records Management.

Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
Annual Security Refresher Briefing Note: All classified markings contained within this presentation are for training purposes.

Annual Security Refresher Briefing Note: All classified markings contained within this presentation are for training purposes.
Overview of the Privacy Act

Overview of the Privacy Act
Privacy and Information Security Training (2006-07) VUMC Privacy Website www.mc.vanderbilt.edu/privacy.

Privacy and Information Security Training ( ) VUMC Privacy Website
HIPAA Training: Health Insurance Portability and Accountability Act.

HIPAA Training: Health Insurance Portability and Accountability Act.
Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.

Health Insurance Portability and Accountability Act HIPAA Education for Volunteers and Students.
HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.

HIPAA. What Why Who How When What Is HIPAA? Health Insurance Portability & Accountability Act of 1996.
HIPAA Privacy Rule Training

HIPAA Privacy Rule Training
HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) 252-9321; Victoria Nemerson.

HIPAA PRIVACY REQUIREMENTS Dana L. Thrasher Constangy, Brooks & Smith, LLC (205) ; Victoria Nemerson.
1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/2009 0.

1 Louisiana Department of Health and Hospitals Basic HIPAA Privacy Training: Policies and Procedures 01/09/
It’s the Law! Texas Education Code (TEC) Sec. 39.0301. SECURITY IN ADMINISTRATION OF ASSESSMENT INSTRUMENTS. (a) The commissioner: (1) shall establish.

It’s the Law! Texas Education Code (TEC) Sec SECURITY IN ADMINISTRATION OF ASSESSMENT INSTRUMENTS. (a) The commissioner: (1) shall establish.
Https://www.youtube.com/watch?v=5NvA4hCOfjU& feature=youtu.be.

feature=youtu.be.
SAFEGUARDING DHS CLIENT DATA PART 2 SAFEGUARDING PHI AND HIPAA Safeguards must: Protect PHI from accidental or intentional unauthorized use/disclosure.

SAFEGUARDING DHS CLIENT DATA PART 2 SAFEGUARDING PHI AND HIPAA Safeguards must: Protect PHI from accidental or intentional unauthorized use/disclosure.
Restrictive Procedures Certification 2960.0710 Certification required. A license holder who wishes to use a restrictive procedure with a resident must.

Restrictive Procedures Certification Certification required. A license holder who wishes to use a restrictive procedure with a resident must.
Section Four: Employee and Visitor Access Controls Note: All classified markings contained within this presentation are for training purposes only.

Section Four: Employee and Visitor Access Controls Note: All classified markings contained within this presentation are for training purposes only.
Session 3 – Information Security Policies

Session 3 – Information Security Policies
HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.

HIPAA COMPLIANCE IN YOUR PRACTICE MARIBEL VALENTIN, ESQUIRE.
Department of Human Resources. Progressive Process A progressive discipline system gives employees ample warning of misconduct or work-related problems;

Department of Human Resources. Progressive Process A progressive discipline system gives employees ample warning of misconduct or work-related problems;
Disciplinary Policy INCA Community Services. Purpose O Every employee has the duty and the responsibility to be aware of and abide by existing rules and.

Disciplinary Policy INCA Community Services. Purpose O Every employee has the duty and the responsibility to be aware of and abide by existing rules and.
Test Security. Texas Education Code (TEC) Sec. 39.0301. SECURITY IN ADMINISTRATION OF ASSESSMENT INSTRUMENTS. (a) The commissioner: (1) shall establish.

Test Security. Texas Education Code (TEC) Sec SECURITY IN ADMINISTRATION OF ASSESSMENT INSTRUMENTS. (a) The commissioner: (1) shall establish.

Similar presentations

Ads by Google