| Greetings!
Terminology is always changing and the world of Industrial Security is full of acronyms and terms whose meaning changes. While the standards remain approximately the same, sometimes enforcement or compliance assurance is more noticeable than others, but change is always on the wind.
With the advent of JPAS in 2004 the term Clearance has evolved into Eligibility and Access.
- Eligibility is defined as the determination of the Central Adjudication Facility (CAF); usually the Air Force, Army, Navy, Marines, DISCO, CIA, DIA, NSA, or any other government agency or military branch.
- Access is granted by the Facility Security Officer (FSO) or Special Security Officer (SSO) upon receiving notification of an individual's eligibility.
- Access requires Need-To-Know; plus
- Eligibility to have access
This month's focus is on Access versus Eligibility and what it means to us.
Read on.... |
The [JPAS] class was outstanding - I really enjoyed the hands-on approach to the class. I would highly recommend this class and the instructor.
Kevin Cloud
Austin, TX |
| The [JPAS] class was outstanding - I really enjoyed the hands-on approach to the class. I would highly recommend this class and the instructor.
Kevin Cloud
Austin, TX |
| Outside Activities & Eligibility |
|
Can an individual's eligibility to access classified information be affected by outside activities and associations? The answer is yes. Why? How?
Americans have rights and freedoms guaranteed by the Constitution, including freedom of assembly. Applying for access to classified does not require individuals to give these rights and freedoms up. What is required is an understanding of the following:
- Access to classified is not a right, but a privilege;
- To receive a determination of eligibility requires an investigation into your character and close associations; and
- Practicing your free speech and freedom to associate may result in a declination of eligibility.
When you counsel your staff regarding filling out the investigation paperwork or on their reporting responsibilities, remind them that outside activities and contacts can indicate political leanings and/or a preference toward or against the United States and thus have an effect on being granted an eligibility or continuing to have an eligibility.
The thirteen (13) adjudicative criteria are used to review the whole person, his character, and his associations to find out if he can be trusted to guard the nation's secrets. With the advent of Automated Continual Evaluation System (ACES) and the requirements to report Adverse Information, the individual may now be subject to a re-investigation upon any reported activity which has not been previously adjudicated at any time -- not just at the time of periodic re-investigations.
By no means should you or your staff feel it is wrong to participate in an activity you or they are passionate about -- just be aware.
Some relevant articles on this topic are:
|
| She's fabulous! I'm so thankful to have had this [JPAS] training. I would highly recommend her to anyone.
Jennifer Schulmeier
San Antonio, TX |
| Are You Controlling Access? |
|
Are you controlling access? What are you controlling access to? Many facility security officers (FSOs) are responsible for controlling access to many different items: access to the facility in general, access to the phone closet, access to the company's proprietary information and trade secrets, access to the facility's computer servers and backups, access to classified (if they have safeguarding), and access to the executive(s).
With so many areas to control access to, do you have a security team? If you are a one-man security department, your security team is your facility's staff. Train the staff to know how to recognize when someone belongs, when something doesn't look right, and what to do to protect your's and their livelihood.
Suggested topics to assist in the above training include:
- Defining & role-playing social engineering;
- Does everybody know who is and is not an employee?
- Is individual access at different points or levels fully explained?
- When an employee is terminated, can you be sure he or she won't be back to create problems?
- How easy is it for someone to get past reception?
- Can someone impersonate a vendor or cleaning personnel to gain access?
- Is the IT Help Desk trained to avoid a non-employee gaining access to the company network or changing a password?
Controlling Dumpster-Diving Finds
- Shred policy -- shred all trash that has proprietary information, trade secrets, FOUO, and personal information
- Once an item is in the trash it becomes public property
When access is not controlled it is like leaving your front door wide open -- whether it is for a period of 2 hours or the whole weekend. Have you ever done that?
Need a customized briefing on access control, espionage, or any other topic that is related to current events? Contact Ann J. Martick and request a consultation or a customized briefing. |
| This [JPAS & e-QIP Immersion training] was incredibly helpful and provided great information. It was well worth the time & cost.
|
| Eligibility, Access & Need-To-Know |
|
Do you have personnel who have a higher Eligibility than your Facility Clearance Level (FCL)? Do you often wonder what that means for your facility?
The person's eligibility was granted based on a Need-To-Know to complete contracted services for the government. This individual may be consulting (or employed elsewhere) and still need that high level of eligibility -- even if employed by your facility who is unable to grant access at the higher level. If your FCL is at Secret, then you as FSO can only grant access up to the Secret level -- regardless of what eligibility the individual shows in JPAS.
The fact that the individual has a higher eligibility than your FCL does not necessary correspond with your facility obtaining a higher level. To obtain the higher FCL your company must obtain a sponsor who sends you a DD-254 indicating that there is a contract between you that requires your facility level to be upgraded to the higher level. Defense Security Services (DSS) will receive a copy of the DD-254 notification (and sponsor letter). Your Industrial Security (IS) Representative will then call on you or send you a letter stating that your Key Management Personnel have 30 days to complete and submit their paperwork for adjudication for a higher eligibility.
An individual may have the eligibility level, and may have been granted access by his or her FSO, but does the individual have Need-To-Know? The holder of the classified information determines Need-To-Know. If the holder is unsure, he or she should check with the FSO or the project manager.
Remind your staff to fully report on anybody (inside or outside) of your company that is attempting to gain access to classified without the Need-To-Know. Several recent espionage cases could have had less devastating compromises if the Need-To-Know principle had been observed.
Eligibility + Access + Need to fulfill contractual obligations = Need-To-Know
Are you looking for customized briefings that are NISPOM compliant and different? Contact me and ask about customized briefings and special topics. |
One on One training is the bomb!!! :)
Lab time was very informative and All questions plus ones that I was thinking of were answered clearly. Really enjoyed the whole process.
Linda Wilson
San Antonio, TX |
| Updates & Reminders |
|
DSS Website Updates:
-
(6/22/09) Industrial Security Letter 2009-02 -- download here. Relates to eligibility of companies for Facility Clearances, clarification of pre-employment clearance processing, and negotiating an acceptable FOCI mitigation measure.
-
(06/22/09) DSSA Launches the Introduction to Army Foreign Disclosure Course: The DSS Academy announced today the release of the new Introduction to Army Foreign Disclosure Course. This 30-minute online course introduces personnel to the Department of the Army (DA) Foreign Disclosure Program. Read more
-
(06/22/09) DSSA Launches the Army Foreign Disclosure Orientation Course: The Academy recently released the Army Foreign Disclosure Orientation Course. This 2-hour, 30-minute online course helps personnel gain familiarity with the Department of the Army (DA) Foreign Disclosure Program. Read more
-
(05/28/09) DSS Academy announces the launch of the new Introduction to Physical Security Course: The Academy released a new interactive Web-based Physical Security course. The course introduces attendees to the Department of Defense (DoD) Physical Security Program. Students gain a basic understanding of the theories and principles involved in the application of physical security in the protection of DoD assets. The 1-hour course focuses on physical security and the roles people play in the physical security program, presents the concept of security-in-depth, explores how countermeasures are developed and deployed to deter, delay, detect, or prevent attacks, and physical security planning and implementation. The target audience for this training includes civilian, military, and contractor personnel responsible for or involved with application of physical security in the safeguarding and protection of DoD assets. To register for the course, go to https://enrol.dss.mil/enrol/lang-en/SYS_login.asp. |
Great facilities and instructor...Ann really was helpful and made the system easy to use. Very organized.
Kenneth Browning
Round Rock, TX | |
Thank you for reading my newsletter. If you know of someone who could benefit from the information shared, please pass it on. If you know of someone who could use my expertise please tell them about me and pass their contact information to me at ajsconsulting@earthlink.net so I may assist them.
What I do best is assist you with solutions to difficult industrial security challenges. How may I assist you today?
Sincerely,
Ann J. Martick, ISP
AJ's Consulting
|
|
|
| What I Do Best |
AJ's Consulting
18+ years experience in the Industrial Security arena.
-
On-Demand JPAS & e-QIP Support
-
On-Demand FSO Surrogate Support
-
Industrial Security Training
-
JPAS & e-QIP Immersion
-
JPAS & e-QIP Proficiency & Troubleshooting
-
FSO/SSO Personnel Security Administration
-
Webinars
-
Got JPAS Access - Now What?
-
NISPOM Compliance - Reporting Responsibilites
-
Customized Briefing Packages
Marketing
-
Internal Newsletters
-
External Newsletters
Call: (512) 650-4819 or email ajsconsulting@earthlink.net for a solution to your industrial security challenges. |
| Networking Opportunities |
Remember it is always who you know... |
ASIS Chapter 179
Monthly Meeting
July 8, 2009
11:30-1:00 PM
Texas Land & Cattle
1100 S. MOPAC
(Rollingwood Exit)
Austin, TX
|
San Antonio FSO Brown Bag
July 8, 2009
11:30-1:00 PM
Hosted by:
SRC
San Antonio, TX
|
Austin FSO Brown Bag
July 15, 2009
10000 Burnet Road
Austin, TX
Topic:
Panel Discussion on How to Sell Security to Management
For more information
|
AIARG* Brown Bag
July 21, 2009
10:30 AM Sharp
UT:ARL
10000 Burnet Road
Austin, TX
For more information
Contact:
*Austin Information Awareness Resource Group |
Looking For Local or Onsite Training?
-
JPAS & e-QIP Immersion (full day w/ lunch) $600.00/ attendee
-
FSO/SSO Personnel Security Administration (full day w/ lunch) $600.00/attendee
-
45-Minute Webinars ($75/Attendee -- a $99 Value)
Contact me: ajsconsulting@earthlink.net or (512) 650-4819 | |
|
