Security Executive Blog

Some NISPOM based questions that might augment your study for the ISP Certification exam. 1. In order to protect fragile intelligence resources and methods, SCI has been established as the SAP for: a. NSA b. GCA c. DNI d. CSA e. GSA 2. Interim TOP SECRET FCLs or PCLs are valid for access to COMSEC at the ____ and ____ levels. a. SECRET, TOP SECRET b. TOP SECRET, CONFIDENTIAL c. CONFIDENTIAL, FOUO d. SECRET, FOUO e. CONFIDENTIAL, SECRET 3. The COR establishes the COMSEC account and notifies the _____: a. CSA  b. GCA c. FSO d. NSA e. DIA 4. Contractors maintain TOP SECRET reproduction records for _____ years. a. Two years b. One year c. Five years d. Ten years e. None of the above Scroll Down for Answer ...

As we continue the series of articles on the self-inspection, we should understand that FSOs or designated inspecting officers may find themselves addressing “Elements of Inspection” that are common to ALL cleared companies participating in the NISP. Still, there are other topics that do not apply, but the opportunity to learn something new applies. There are a few more elements that might be applied at unique cleared facilities, but FSOs  in those situations can adapt these articles to those specific needs. As a recap, according to DSS’  The Self-Inspection Handbook for NISP Contractors, the five elements that pertain to ALL cleared defense contractors are: (A) Facility Security Clearance (FCL) (B) Access Authorizations (C) Security Education , (D) FOCI (E) Classification   Though not applicable to all cleared contractors, subcontracting is covered in NISPOM . This article will address the requirements of the subcontracting and how to set up both the pri...

What is A Standard Practice Procedure (SPP)? According to NISPOM,   Appendix C an SPP is a "document prepared by a contractor that implements the applicable requirements of this manual for the contractor's operations and involvement with classified information at the contractor's facility."  In other words it's your process for applying the NISPOM as you conduct classified work as it applies to your unique operation. The SPP should be tailored to your specific organization. To be effective, it should reflect performance requirements on classified contracts as reflected in the statement of work, DD Forms 254 and security classification guides. Who should have an SPP? NISPOM 1-202 states that, "The contractor shall implement all applicable terms of this Manual at each of its cleared facilities. Written procedures shall be prepared when the FSO believes them to be necessary for effective implementation of this Manual or when the CSA determines ...