Special Access programs

Question 1

What Executive Order defines Special Access Programs?

Answer 1

Executive order 12958

Question 2

Define Special Access Program

Answer 2

a program established for a specific class of classified
information that imposes safeguarding and access requirements exceeding those normally required for information at the same classification level.

Question 3

SAPs are established only when:

Answer 3

The program is required by statute, or upon the finding
of exceptional vulnerability of, or threat to, specific information, and if the normal criteria
for determining access to information classified at the same level are insufficient

Question 4

True/False, SAPs use the standardized classification levels?

Answer 4

True

Question 5

True/False, SAPs require a codeword or nickname?

Answer 5

True

Question 6

Prior to being identified as Special Access Programs, what term was used (mainly in the 80’s)

Answer 6

Black Program

Question 7

Name three mis-conceptions about SAPs:

Answer 7

SAPs are used as a means to hide money spent on certain
programs
SAPs are used to avoid taxpayer scrutiny
SAPs lack Congressional oversight

Question 8

What Black Program investigation led to increased scrutiny over SAPs

Answer 8

Yellow Fruit

Question 9

What section of the US Code outlines SAP oversight?

Answer 9

Section 119, Title 10

Question 10

Existing SAPs must report to congress NLT ___________ each year

Answer 10

March 1st

Question 11

Existing SAP reports to Congress include:

Answer 11

• The estimated total budget requested for the current and next fiscal years
• A brief description of the program, including the numbers of individuals involved
• A brief discussion of the major milestones for the SAP, such as current issues or significant changes
• The actual cost of the program for each previous fiscal year

Question 12

New/Proposed SAPs must report to congress NLT ___________ each year

Answer 12

February 1st

Question 13

New/Proposed SAP reports to Congress include:

Answer 13

• Notice of the designation of the program as a SAP and the justification for such designation
• The current estimate of the total cost for the program
• Identification of existing programs or technologies that are similar to the new SAP’s technology or mission

Question 14

What communicates how a SAP is acknowledged and protected?

Answer 14

the Protection Level

Question 15

Two types of SAP protection levels

Answer 15

Acknowledged, Unacknowledged

Question 16

True/False. SECDEF can waive Congressional reporting requirements?

Answer 16

True

Question 17

Name the three SAP categories

Answer 17

Acquisition, Intelligence, Operations and Support

Question 18

Name the phases of the SAP lifecycle

Answer 18

Exploration, Establishment, Maintenance, Disestablishment

Question 19

During what phase is a SAP referred to as a “prospective SAP?

Answer 19

Establishment

Question 20

Programs generally cannot be designated a P-SAP for more than ______ months

Answer 20

six

Question 21

Who approves a SAP (big government, not just DoD)?

Answer 21

Unless otherwise directed by the President of the United States, only the Secretaries of State, Defense, Energy, Homeland Security, and the Director of National Intelligence - or their principal deputies - are authorized to approve SAPs.

Question 22

When does a SAP move into the maintenance phase?

Answer 22

Once it has been approved

Question 23

Each year, one of three things will happen to every DoD SAP. Name these three things.

Answer 23

the SAP will revalidate and continue its work, restructure, or transition to the disestablishment phase

Question 24

Within the DoD, who approves all SAPs

Answer 24

Deputy Secretary of Defense

Question 25

True/False. Industry can initiate the need for a SAP?

Answer 25

True

Question 26

SAP Approval Packages are sent where?

Answer 26

Special Access Program Oversight Committee (SAPOC)

Question 27

The component level organization with SAP oversight responsibility

Answer 27

Special Access Program Coordination

Office (SAPCO)

Question 28

Acquisition SAPs are assigned to

Answer 28

The Office of the Under Secretary of Defense for

Acquisition, Technology, and Logistics

Question 29

Intelligence SAPs are assigned to

Answer 29

The Office of the Under Secretary of Defense for Intelligence

Question 30

Operations and support SAPs are assigned to

Answer 30

The Office of the Under Secretary of Defense for Policy

Question 31

Senior executive service-level working group that is

responsible for ensuring SAPs aren’t duplicated across the various SAP categories

Answer 31

Senior Review Group (SRG)

Question 32

True/False. Members of the SAPOC have access to all DoD-Approved SAPs?

Answer 32

True

Question 33

Who is the lead for the DoD SAPCO?

Answer 33

Under Secretary of Defense for Acquisition, Technology, and Logistics

Question 34

When a SAP is approved by the SAPOC, it is the ____________ that notifies Congress

Answer 34

DoD SAPCO

Question 35

Congressional members of the __________________ have access to SAPs

Answer 35

Authorization and Appropriations Committees and their Defense Subcommittees

Question 36

Name the three Appropriations Committees

Answer 36

• House Armed Services Committee (HASC)

- Senate Armed Services Committee (SASC)

Question 37

Name the two Intelligence Committees

Answer 37

• House Permanent Select Committee on Intelligence (HPSCI)

- Senate Select Committee on Intelligence (SSCI)

Question 38

Component level organization that maintains records and list of SAP facilities

Answer 38

Special Access Program Central Offices (SAPCO)

Question 39

Chaired by the Deputy Secretary of Defense and formally approves SAPs

Answer 39

Special Access Program Oversight

Committee (SAPOC)

Question 40

Ensures “one voice” to congress in regards to SAPs

Answer 40

DoD SAP Central Office

Question 41

True/False. A SAP can have multiple Program Security Officers?

Answer 41

False

Question 42

True/False. a SAP can have multiple Government SAP Security Officers?

Answer 42

True

Question 43

Duties of the GSSO (15)

Answer 43

• Ensure adequate secure storage and workspace
• Ensure strict adherence to NISPOM/NISPOMSUP/Overprint
• When required, establish and oversee a classified material control program for each SAP
• When required, conduct annual inventory of accountable classified material
• When required, establish a Special Access Program Facility (SAPF)
• Establish and oversee the visitor control program
• Monitor reproduction and /or duplication and destruction capability of SAP information
• Ensure adherence to special communications requirements and procedures within the Special Access Program Facility (SAPF)
• Provide initial program indoctrination of employees after access approval; rebrief and debrief as required
• Establish and oversee specialized procedures for transmission of SAP material to and from program elements
• When required, ensure contractually specific security requirements such as: TEMPEST, automated information system (AIS), Operations Security (OPSEC), etc. are accomplished
• Establish security training and briefings specifically tailored to the unique requirements of the SAP

Question 44

What does CPSO stand for?

Answer 44

Contractor Program Security Officer

Question 45

Executive Order 12958 directs the

__________________ under the direction of the National Archives, to develop implementing guidance.

Answer 45

the Information Security Oversight Office (ISOO)

Question 46

ISOO Directive No. 1, Classified National Security Information

Answer 46

Sets forth more specific guidance to agencies on the implementation of the Executive Order

Question 47

The ___________ provides standardized

guidance for the SAP community and while it is utilized by the Air Force, Army, and Navy, it is not the DoD policy.

Answer 47

Joint Air Force-Army-Navy (JAFAN) Manual 6/0

Question 48

Outlines policy and responsibilities on the oversight and management of all DoD SAPs.

Answer 48

DoD Directive 5205.07, DoD Special Access Program Policy

Question 49

Implementing document for the 5205.07. It disseminates policy, assigns responsibilities, and prescribes procedures for implementation and use in the management, administration, and oversight of all DoD SAPs.

Answer 49

DoDI O-5205.11

Question 50

Should conditions or unforeseen factors render full compliance with the JAFAN 6/0 Revision 1 standards unreasonable, the PSO may apply equivalent protections, rather than following the exact wording of the JAFAN 6/0, as long as ___________________________

Answer 50

Approval has been sought from the component SAPCO

Question 51

Establishes the standard procedures and requirements

for all government contractors, with regard to classified information (baseline doc plus added guidance)

Answer 51

NISPOM, NISPOM supplement, and DoD Overprint

Question 52

Having standard SAP practices that are applied uniformly across all service branches to enable individuals to move between SAPs is known as:

Answer 52

reciprocity

Question 53

Executive Order 12958, as amended:

Classified National Security Information

Answer 53

• Is the foundation of national policy for classified
  information
• Directs the Information Security Oversight Office
  (ISOO) to develop implementing guidance

Question 54

Information Security Oversight Office (ISOO) Directive No. 1: Classified National Security Information

Answer 54

• Sets forth more specific guidance to agencies on
  the implementation of the Executive Order 12958,
  as amended

Question 55

Section 119, Title 10 United States
Code: Special Access Programs
Congressional Oversight

Answer 55

• Outlines SAP oversight and reporting requirements

Question 56

Revision 1 Department of Defense Overprint to the National Industrial Security Program Operating Manual
(NISPOM) Supplement

Answer 56

• Provides additional guidance and applies the DoD’s rules
• Applies to all personnel with access to DoD Special Access Programs (SAPs), regardless of government or industry employment or agency affiliation

Question 57

Joint Air Force-Army-Navy (JAFAN) Manual 6/0: Special Access Program Security Manual

Answer 57

• Provides standardized guidance for the Special Access Program (SAP) community
• Is utilized by the Air Force, Army, and Navy, but it is not the DoD policy
• Other agencies have also adopted and utilize the JAFAN 6/0

Question 58

DoD Directive 5205.07: DoD Special Access Program Policy

Answer 58

Outlines policy and responsibilities on the
oversight and management of all DoD Special
Access Programs (SAPs)

Question 59

DoDI O-5205.11, Management, Administration, and Oversight of DoD Special Access Programs

Answer 59

• Is the implementing document for DoD Directive 5205.07
• Disseminates policy, assigns responsibilities, and prescribes procedures for implementation and use in the management, administration, and oversight of all DoD SAPs

Question 60

DoDI O-5205.11, Management, Administration, and Oversight of DoD Special Access Programs

Answer 60

• Is the implementing document for DoD Directive 5205.07
• Disseminates policy, assigns responsibilities, and prescribes procedures for implementation and use in the management, administration, and oversight of all DoD SAPs