Security Executive Blog

These NISPOM based questions could be helpful in passing the NCMS ISP Certification and the DoD's SPeD Certification exams. Here's how to use our study guide: 1. Use hard copy or download online version of  NISPOM  to search for answers. http://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodm/522022M.pdf 2. Mark best answer for each choice. 3. Once complete, check your answers against the answer key below. Taking practice tests is a great way to prepare for an exam. Successful students in grade school and college study using guides and exam preparation questions based on the test subject material. This same successful methodology can also help prepare for professional exams like ISP Certification and SPeD Certification. DSS has study material and tests available for those who enrol, NCMS has test study material as well. Practice tests augment certification exam preparation.  Red Bike Publishing's Unofficial Study Guide  features four complete test...

This article addresses establishment of the Insider Threat Program Plan. The article is derived from the Self Inspection Handbook for NISP Contractors , and uses the format to walk through the self-inspection criteria. We begin the topic question, the NISPOM reference, an explanation of requirements, and finally how to inspect compliance. Topic Question(s): Has the company developed and implemented an insider threat program plan endorsed by the ITPSO? Do you have a written program plan that has been self-certified to DSS as current and implemented? EVIDENCE: Provide the policy, internal guidelines, and procedures. If you do not have an insider threat program established, do you have an implementation plan, roadmap, or milestones for establishing your program? EVIDENCE: Provide the implementation plan or milestones way ahead. NISPOM Reference(s): 1-202a Discussion: Once the Insider Threat Program Senior Official (ITPSO) is designated, the Celared Defense Contractor (CDC) enterprise c...

This article addresses the designation of the Insider Threat Program Senior Official (ITPSO). The article is derived from the Self Inspection Handbook for NISP Contractors , and uses the format to walk through the self-inspection criteria. We begin the topic question, the NISPOM reference, an explanation of requirements, and finally how to inspect compliance. Topic Question(s): Has the company appointed a U.S. citizen employee, who is a senior official, as a key management personnel (KMP) who will serve as the Insider Threat Program Senior Official (ITPSO)? EVIDENCE: Name of Senior Official in writing NISPOM Reference(s): 1-202b, 1-202c, 2-104 Discussion: The Insider Threat Program (ITP) is established to prevent, detect, or stop a trusted employee from committing espionage or sabotage to the Cleared Defense Contactor (CDC) and their product or contract deliverables. The ITP is also scoped to protect the CDC employees from the insider threat actions. The ITP is a requirement as c...