|
Industrial Security & You: JPAS Tips, Safety Snippets, & Training Opportunities |
Greetings!
Familiarity with your responsibilities and habitual following of checklists and standards assists with ensuring overall compliance with the NISPOM, Industrial Security Letters, contractual security requirements and company security policies. Have you considered stepping away from always checking the status of your security department's compliance? Have you double checked whether the reasons for one or more of your policies or checklists are still valid?
Has the security awareness level of your staff and management changed? If there has been a change or if the reasons for policies and checklists have changed -- can you respond accordingly?
Change may make you uncomfortable, but you may be surprised at how even a slight change can be beneficial and result in higher or more effective compliance by management and staff. Your briefings will also come across as less stale and possibly more relevant. |
|
|
Reviewing JPAS Periodic Reinvestigation Reports |
Do you print the Periodic Reinvestigation Report other than in preparation for your annual Security Review? Why not? The Periodic Reinvestigation Report tells you who is coming due for a Periodic Reinvestigation (PR). As Facility Security Officers (FSOs), we are responsible for ensuring that those we maintain personnel clearance records on are processed in a timely manner when they are due for a PR.
Remember that those who were processed for a Confidential or a Secret level access come due for a reinvestigation 10 years from the date of Last Investigation (field on the Periodic Reinvestigation Report). Those who were processed for the Top Secret and special caveat level accesses come due for a reinvestigation 5 years from the date of Last Investigation. Delays in verifying whether an individual still requires a clearance, the level of clearance required, and submitting a reinvestigation through e-QIP can result in a finding by your Defense Security Service's (DSS) Industrial Security (IS) Representative during your annual Security Review. My suggestion is to at least review this report at six month intervals, if not more often.
Occasionally you will have an individual who has an eligibility that is higher than the access your facility has granted him listed on the Periodic Reinvestigation. [Eligibility is granted by the Central Adjudication Facility (CAF), while Access is granted by the Facility or Agency submitting individual for a clearance] When this happens, the individual will show up as due a PR. You are only required to submit a PR for the level of access you grant the individual. As long as you have reviewed the status of the individual and can verify that your facility does not require him to have a higher access, you should not receive a finding.
You may also have an individual who has different levels of access at different facilities or agencies. Prior to starting the PR process, you may want to verify that another facility has not already started the process.
Verification begins with reviewing the Person Summary screen and checking if the PSQ Submitted field in the 1st section of the page indicates that a PR has been recently submitted. Second, scroll down to the bottom of the Person Summary screen and check whether Investigation History indicates that an investigation has been initiated. While JPAS is the Database of Record for the Department of Defense (DoD), there are other agencies who process investigations that do not currently use JPAS. So, your third step would be to verify with the individual (or your files) that he has not already submitted an electronic SF 86 for an agency outside of DoD. The reason for this step is that the NISPOM requires that you as FSO verify that duplicate investigations are not being processed.
Require more information regarding JPAS requirements or tips? Register for a Got JPAS Access -- Now What? webinar or for either the JPAS & e-QIP Immersion training or the JPAS & e-QIP Proficiency & Troubleshooting training. If you would like On-Demand JPAS Support, please email ajsconsulting@earthlink.net for more information. |
|
Safety Snippets: Scams, Social Networking, & Suggestions | |
Scams & Other Concerns:
- While preparing for a visit to celebrate the graduation
 of one of our nephews -- searching for a viable 1st car on Craig's List, Dan (my husband) ran across a scam targeting the unwary. The posting advertises a car in the local area for sale at a price that is "too good to be true" -- $3995 for a 1994 Audi, etc. The seller purports to be a member of the military with a well taken care of vehicle he (or she) must sell - usually because being sent overseas. For prepayment through e-Bay, the seller will have the military pickup the costs of shipping the vehicle "straight to your door" from Alaska or Montana or wherever the car is currently located. Tell-tales that this is a scam include the same phrases, wording, and requirements that the prepayment be made via e-Bay -- even with various seller genders, names, or cars.
- Video link report on Personally Identifiable Information (PII)stored on digital copiers --> http://www.youtube.com/watch?v=iC38D5am7go
- Criminals Hide Payment-Card Skimmers Inside Gas Station Pumps. DarkReading (02/22/10) Higgins, Kelly Jackson
Criminals have devised a new way to skim payment card details from people buying gas, by concealing skimming devices within the gas pump. Devices nesting within the pumps were found at about 180 Utah gas stations, and this development reflects the increasing sophistication of card skimmers. Police say more than $11,000 was stolen from California ATMs using data skimmed from a 7-Eleven store in Sandy, Utah. A cell phone-sized Bluetooth skimming device was hidden in the pump and attached to the card reader, according to reports. Police officials say that Bluetooth-enabled sniffers and wireless technology enable criminals to capture data remotely rather than having to physically retrieve the devices. Analyst Bruce Schneier says that criminals in Europe also are hiding skimming devices in gas pumps in an effort to evade detection, and it is unclear whether such fraud is an inside job. "The moral is they are getting better and better at this," he says. Schneier also notes that some of the attacks may be the work of organized criminal gangs.
Social Networking & Internet Concerns:
Suggestions:
- Traveling Abroad With Kids
 Put your car keys beside your bed at night, especially if you have a panic alarm on your keychain. If you hear someone attempting to break in -- press the panic button, it should scare them off. Consider having your keys in your hand when walking in the parking lot and using the panic alarm to scare off potential attackers.
|
|
Moving Beyond Personnel Security |  Have you been asked what is the next step? Is one of your roles Import/Export expert? Is your company required to generate and comply with a Technological Control Plan (TCP)? Are you concerned with the protection of Sensitive But Unclassified Information?
The protection of unclassified information is necessary and may soon come under DSS' jurisdiction of control. Some unclassified is already regulated by the NISPOM -- whether incorporated by reference - International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR) - or because contract specific handling requirements by the client (sometimes in the DD-254) due to Operation Security (OPSEC) concerns, protection of proprietary information, and protection of For Official Use Only information.
Do you know what a Trade Secret is and how your company protects Trade Secrets? If you are not the Export/Import expert for your company, do you know who is? Have you networked with him or her so that you can answer your DSS IS Representative's questions in this area?
The Central Texas -- Greater Austin Area Security Professionals ( CT--GA2SP) have devoted more than one brown bag session to this topic and have several resources that may be of assistance.
The U.S. Bureau of Industry and Security ( http://www.bis.doc.gov/) has several training presentations, scheduled training sessions, and access to a database to assist in complying with the EAR.
Tune in next month for more steps Beyond Personnel Security.... |
|
|
Thank you for reading my newsletter and passing it on to others who may benefit. What I do best is assist you with solutions to challenging industrial security challenges. How may I assist you today?
Sincerely,
Ann J. Martick, ISP
AJ's Consulting
|
|
|
Training was on target and met our needs. [We] learned the info required to perform our jobs as FSO.
Timothy Pullen
San Antonio, TX |
The [JPAS] class was outstanding - I really enjoyed the hands-on approach to the class. I would highly recommend this class and the instructor.
Kevin Cloud
Austin, TX |
|
Newsletter Sponsors |
 |
|
|
All CTA should take this class. The instructor was great!! I love the manuals...I will keep it forever. I recommend this training.
|
[Y]our class was the best thing this office could have done to get their security up and running.
Eugene Turner
Huntsville, AL |
|
Training |  |
Providing training for Industrial Security Professionals, and NISP Contractors.
This is hands-on training, which is customized for the individual attendees. Training sessions and Webinars are available for as few as 1 and as many as 30.
Call or email now to get your preferred dates of training for:
- Webninars
- Got JPAS Access -- Now What?
- NISPOM Compliance -- Reporting Responsibilities
Full & 1/2 Day Sessions
- JPAS & e-QIP Immersion
- JPAS & e-QIP Proficiency & Troubleshooting
- FSO/SSO Personnel Security Administration
- Advancing Beyond Personnel Security
|
Great facilities and instructor...Ann really was helpful and made the system easy to use. Very organized.
Kenneth Browning
Round Rock, TX |
| Charitable Opportunities | |
|
AIARG*
Tuesday, May 18th
10:30-Noon
Hand-2-Hand Combat vs. Phishers
UT:ARL
10000 Burnet Rd.
Austin, TX
*Austin Information Assurance Resource Group
CT-GAS2P*
Wednesday, May 19th
11:30-1:00 PM
Cyber Security
UT:ARL
10000 Burnet Road.
Austin, TX
*Central Texas -- Greater Austin Area Security Professionals
Wednesday, June 9th
11:30-1:00 PM
Signature Science, LLC
8329 N. MOPAC
Austin, TX
|
|
|
