SECNAV M-5510.36, DEPARTMENT OF THE NAVY INFORMATION SECURITY PROGRAM Flashcards
What applies uniform, consistent, and cost-effective policies and procedures to the classification, safeguarding, transmission and destruction of classified information?
Information Security Program (ISP)
Who bears executive responsibility for the security of the Nation, which includes the authority to classify information for the protection of the national defense and foreign relations of the U.S.?
President of the United States (POTUS)
What provides overall policy guidance on information security?
National Security Council (NSC)
Who as the chairman of the National Foreign Intelligence Board (NFIB), issues instructions in the form of DCI directives or policy statements affecting intelligence policies and activities?
Director of Central Intelligence (DCI)
What is the primary internal security agency of the U.S. Government?
Federal Bureau of Investigation (FBI)
Who is the investigative component of the DON and is the sole liaison with the FBI on internal security matters?
Director, Naval Criminal Investigative Service (DIRNCIS)
Who is the Department of Defense (DoD) senior official charged by the Secretary of Defense (SECDEF) with responsibility for developing policies and procedures governing information and personnel security, including atomic energy policy programs?
Under Secretary of Defense (Intelligence) (USD(I))
Who is designated as the senior official responsible for administering that portion of the DoD ISP pertaining to Special Access Programs (SAP), the National Disclosure Policy (NDP), Foreign Government Information (FGI) (including North Atlantic Treaty Organization (NATO) information), and security arrangements for international Programs?
Under Secretary of Defense for Policy (USD(P))
What provides centralized coordination and direction for signals intelligence and communications security for the U.S. Government?
National Security Agency (NSA)
The authority to lower any COMSEC security standards within the DoD rests with the what?
SECDEF
What is responsible for the direction and control of SCI programs established by DOD components?
Defense Intelligence Agency (DIA)
Who is responsible to the SECNAV for establishing, directing, and overseeing an effective DON ISP, and for implementing and complying with all directives issued by higher authority?
CNO
What is responsible for investigative, law enforcement, physical security, technical surveillance countermeasures, and counterintelligence (CI) policy and programs within the DON?
DIRNCIS
Who is responsible to the ASN (RD&A) for implementing policies and managing DON participation in
international efforts concerning RD&A?
Director, Navy International Programs Office (Navy IPO)
Who is a Senior Official of the Intelligence Community (SOIC) and administers the SCI program for the Navy, including non-Service DON entities?
Director of Naval Intelligence (DNI)
Who is a Senior Official of the Intelligence Community (SOIC) and administers the SCI program for the Marine Corps?
Director of Intelligence of the Marine Corps
Who is responsible for DON policies and implementation of the DoD IA program?
Department of the Navy, Chief Information Officer (CIO)
Who is responsible for implementing the DON CIO policies within the DON?
Commander, NETWARCOM
Who as the designated SSO for the Commander, NETWARCOM, is responsible for signals intelligence activities and for administration of SCI programs within the DON cryptologic community?
NETWARCOM Security Directorate
Who administers the DON CMS program and acts as the central office of records for all DON CMS accounts?
Director, COMSEC Material System (DCMS)
Who administers the DON ISP within the U.S. Marine Corps?
Commandant of the Marine Corps (CMC)
Who is responsible for implementation of CI and human intelligence programs and the ISP?
CMC (Code ARS)
Who as Special Security Officer (SSO) for the U.S. Marine Corps, is responsible for guidance and implementation of SCI programs?
CMC (Code IOS)
What may be granted to accommodate a long-term or permanent inability to meet a specific requirement?
Exception
COMSEC information is governed by what reference?
EKMS-1
Sensitive Compartmented Information (SCI) is governed by what reference and other national, DoD and DON issuances?
DoD 5105.21-M-1
The Under Secretary of the Navy must formally approve the establishment of each SAP in coordination with the what?
Deputy SECDEF
SIOP and SIOP-ESI are governed by what reference which is issued by the CNO?
OPNAVINST S5511.35K
Classified and unclassified NNPI is governed by what reference?
NAVSEAINST 5511.32C
What is information received from one or more foreign governments or international organizations as classified or expected to be held in confidence?
FGI
NATO classified and unclassified information is governed by what reference?
USSAN 1-69
What is defined and governed by laws, international agreements, EOs, and regulations that address the identification, marking, protection, handling, transmission, transportation, and destruction?
Controlled Unclassified Information (CUI)
The National Industrial Security Program (NISP) was established by what reference to safeguard classified information released to industry in a manner that is equivalent to its protection within the executive branch?
Executive Order 12829
What is used as a generic term for any organizational entity and may include a base, station, unit, laboratory, installation, facility, center, activity, detachment, squadron, ship, etc.?
Command
Who is responsible for the effective management of the ISP within the command?
Commanding Officer
Who is responsible for implementing the ISP and shall have direct access to the commanding officer?
Security manager
The Security manager will coordinate after-incident responses involving classified information processed on IT systems with the command what?
Information Assurance Manager (IAM)
The command security manager will ensure that access to classified information is limited to appropriately cleared personnel with a need-to-know per what reference?
SECNAVINST 5510.30
The command security manager may be assigned full-time, part-time or as a collateral duty and must be an officer or a civilian employee, what grade or above, with sufficient authority and staff to manage the program for the command?
GS-11
The security manager must be a U.S. citizen and have been the subject of a favorably adjudicated Single Scope Background Investigation (SSBI) completed within how many years prior to assignment?
Five
The commanding officer shall designate, in writing, a command what for commands handling Top Secret information?
TSCO
The TSCO must be an officer, senior non-commissioned officer what rank or above, or a civilian employee, GS-7 or above?
E7
The TSCO must be an officer, senior non-commissioned officer what rank or above, or a civilian employee, GS-7 or above?
E7
Persons designated as assistant security managers must be U.S. citizens, and either officers, enlisted persons what rank or above, or civilians GS-6 or above?
E6
Who is the principal advisor to the commanding officer in all matters regarding the Communication Material System (CMS)?
EKMS manager
What reference requires the commanding officer to designate, in writing, an NWP custodian?
NTTP 1-01
What reference establishes procedures and minimum security standards for the handling and protection of NATO classified information?
USSAN 1-69
What is the main receiving and dispatching element for NATO information in the U.S. Government?
Central United States Registry (CUSR)
Per what reference, the commanding officer shall designate, in writing, an IAM and Information Assurance Officer(s) (IAO), as appropriate?
OPNAVINST 5239.1B
Who serves as the point of contact for all command information assurance (IA) matters and implements the command’s IA program?
IAM
Who is designated for each information system and network in the command, and are responsible for implementing and maintaining the command’s information technology systems and network security requirements?
IAO
Per what reference, the commanding officer shall designate, in writing, a command SSO and Subordinate Special Security Officer (SSSO), as needed, for any command that is accredited for and authorized to receive, store, and process SCI?
DoD 5105-21-M-1
Who is responsible for the operation (e.g., security, control, use, etc.) of all command Sensitive Compartmented Information Facilities (SCIFs)?
SSO
The SSO and the SSSO shall be appointed in writing and each must be a U.S. citizen and either a commissioned officer or a civilian employee GS-9 or above, and must meet the standards of what reference?
DCID 6/4
Per what reference, the Commanding Officer shall designate, in writing, a command security officer?
OPNAVINST 5530.14C
Specified security functions may be performed for other commands via what, or Memoranda of Understanding (MOU) or Memoranda of Agreement (MOA)?
SSAs
Who shall ensure that personnel in their commands receive the security education necessary to ensure proper execution of their security responsibilities?
Commanding officers
Who is responsible for policy guidance, education requirements and support for the DON security education program?
CNO
What is the only basis for classifying national security information, except as provided by Title 42, U.S.C., Sections 2011-2284?
Executive order 12958
Information classified by what DON authorities shall be codified in security classification guides, and it shall be declassified as soon as it no longer meets the standards for classification in the interest of the national security?
Original Classification Authorities (OCAs)
Information that requires protection against unauthorized disclosure in the interest of national security shall be classified as Top Secret, Secret, or what else?
Confidential
What is the classification level applied to information whose unauthorized disclosure could reasonably be expected to cause exceptionally grave damage to the national security?
Top Secret
What is the classification level applied to information whose unauthorized disclosure could reasonably be expected to cause serious damage to the national security?
Secret
What is the classification level applied to information whose unauthorized disclosure could reasonably be expected to cause damage to the national security?
Confidential
What is the initial decision that an item of information could be expected to cause damage to the national security if subjected to unauthorized disclosure?
Original classification
The authority to originally classify information as Top Secret, Secret, or Confidential rests with the what and officials delegated the authority?
SECNAV
OCA’s and acting OCAs must have refresher training on OCA duties and responsibilities how often?
Annually
Requests for Top Secret original classification authority shall be submitted, in writing, to the what via CNO?
Secretary of the Navy
Requests for Secret or Confidential original classification authority shall be submitted, in writing, directly to the what?
CNO
What reference contains the specific criteria, principles, and considerations for original classification?
OPNAVINST 5513.1F
At the time of original classification, the OCA shall attempt to establish a specific date or event for declassification, however the date or event shall not exceed how many years from the date of the original classification?
25
Who may provide advice and assistance to classifiers in assigning classification for original and derivative classification decisions?
Security Managers
Only the Secretary of the Navy or the what may reclassify information
Under Secretary of the Navy
OCAs shall request reclassification, in writing, via who?
CNO
Cleared recipients or holders of reclassified information shall be notified within how long and appropriately briefed about their continuing obligation and responsibility to protect this information from unauthorized disclosure?
30 days
The OCA shall act upon a classification challenge within how many days of receipt and notify the challenger of any changes made as a result of the challenge or the reason(s) no change is being made?
30
If the person initiating a classification challenge is not satisfied with the OCA’s final determination, the decision may be appealed to the what for review as the DON’s impartial official?
CNO
Individuals, not having original classification authority, who create information they believe to be classified shall mark the information accordingly, and Mark the first page and/or cover sheet of information as tentatively classified with the intended classification level preceded by what word?
Tentative
What reference provides that the SECDEF, among others, may determine whether granting a patent disclosure for an invention would be detrimental to national security?
Title 35, U.S.C, Section 181-188
New projects and significant technical developments or trends related to what are normally classified in order to protect the strategic value of this technology?
NNPI
Classified information related to the tactical characteristics and capabilities of naval nuclear ships and propulsion plant design is typically what while classified information relating primarily to the reactor plant of a nuclear propulsion system is typically RD?
NSI
What reference provides detailed guidance for classifying NNPI?
CG-RN-1
Who, as the Program Manager for the Naval Nuclear Reactor Program, issues bulletins amplifying or modifying classification and security guidance pertaining to NNPI?
Commander, Naval Sea Systems Command
The only officials authorized to downgrade, declassify, or modify an original classification determination with a resulting change in the classification guidance for classified DON information is the what with respect to all information over which the DON exercises final classification authority?
SECNAV
Detailed policy concerning the automatic declassification of DON information is contained in what reference?
OPNAVINST 5513.16
Executive Order 12958 established procedures for automatic declassification review of classified records that are more than 25 years old and have been determined to have permanent historical value as defined by what reference?
Title 44, U.S.C, Chapters 21, 31, and 33
Historically valuable records are identified in what reference by the use of the term “permanent” in the records series disposition instruction?
SECNAV M-5210.1
Automatic declassification review of 25-year old records applies to the official records contained in what records systems?
National Archives and Records Administration (NARA)
Declassified documents will not be released to the public until a public release review has been conducted in accordance with what reference?
DoD Directive 5230.9
Systematic declassification review is the review for declassification of classified information contained in records that have been determined by the what of the U.S. to have permanent historical value?
Archivist
Who is responsible for identifying to the Archivist of the U.S. that classified DON information that is 25 years old and older which requires continued protection?
CNO
Who may establish special procedures for systematic review for declassification of classified cryptologic information?
SECDEF
Who may establish procedures for systematic review for declassification of classified information pertaining to intelligence activities (including special activities), or intelligence sources or methods?
Director, Central Intelligence (DCI)
Mandatory declassification review does not supplement or modify the procedures for the handling of FOIA requests as described in what reference?
SECNAVINST 5720.42F
All information classified under Executive Order 12958 or predecessor orders shall be subject to a review for declassification by the DON if the information has not been reviewed within the preceding how many years?
Two
Command action on the initial Mandatory declassification request shall be completed within how many working days and the requester notified accordingly?
45
A final determination shall ordinarily be made within how long of the date of receipt of the mandatory declassification request?
One year
Per what reference, fees may be charged as authorized by Title 31, U.S.C., Section 9701 for mandatory declassification reviews?
NAVSO P1000
OCAs shall take reasonable steps to declassify classified information contained in records determined to be of permanent historical value, per what reference?
SECNAV M-5210.1
Notices that assign classification to unclassified information shall be classified Confidential, unless the notice itself contains information at a higher classification level. The notice shall be marked for declassification no less than how many days from its origin?
90
The Department of State (DOS), editors of Foreign Relations of the U.S., have a mandated goal of publishing how many years after the event?
20
What serve both legal and management functions by recording DON original classification determinations made under Executive Order 12958 and its predecessor orders?
Security Classification Guides (SCGs)
SCGs are the primary reference source for what classifiers to identify the level and duration of classification for specific information elements?
Derivative
The CNO (N09N2) manages a system called what, which manages and centrally issues SCGs for the DON OCAs?
RANKIN
SCGs shall be prepared, in writing, in the format described in what reference?
OPNAVINST 5513.1F
The primary element of the RANKIN Program is a computerized database that provides for the standardization, centralized management and issuance of all DON what?
SCGs
What series contains, as enclosures, individual SCGs for systems, plans, programs, or projects related to the overall subject area of the instruction?
OPNAVINST 5513
Who periodically issues an index of SCGs available within the DON?
CNO
Most instructions in the OPNAVINST 5513 series are assigned what and can be ordered through the DON supply system?
National Stock Numbers (NSNs)
Original Classification Authorities shall review their SCGs for accuracy and completeness at least every how many years and advise the CNO (N09N2) of the results?
Five
Security Classification Guides for systems, plans, programs, or projects involving more than one DoD component are issued by the what?
Office of the Secretary of Defense (OSD)
In cases of apparent conflict between a SCG and a classified source document about a discrete item of information, the instructions in the what shall take precedence?
SCG
