Vocab 3 - Facility Clearances in the NISP (Glossary) Flashcards
Access
The ability and opportunity to gain knowledge of classified information.
Classified Contract
Any contract requiring access to classified information by a
contractor or his or her employees in the performance of the contract. ( A contract may be a classified contract even through the contract document is not classified.) The requirements prescribed for a “classified contract” also are applicable to all phases of precontract activity, including solicitations (bids, quotations, and proposals), precontract negotiations, post-contract activity, or other GCA program or project which requires access to classified information by a contractor.
Classified Information
Official information that has been determined, pursuant to
Executive Order 13526 or any predecessor order, or pursuant to the Atomic Energy Act of 1954, to require protection against unauthorized disclosure in the interest of national security which has been designated.
Classified Information Nondisclosure Agreement
SF 312
Classification Guide
A document issued by an authorized original classifier that
identifies the elements of information regarding a specific subject that must be classified and prescribes the level and duration of classified and appropriate declassification instructions. (Classification guides are provided to contractors by the Contract Security Classification Specification)
Classified Visit
A visit during which a visitor will require, or is expected to require, access to classified information.
Cleared Employees
All contractor employees granted PCLs and all employees being processed for PCLs.
Cognizant Security Agencies (CSAs)
Agencies of the Executive Branch that have been authorized by Executive Order 12829 to establish an industrial security program to safeguard classified information under the jurisdiction of these agencies when disclosed or released to U.S. Industry. These agencies are: The Department of Defense, Department of Energy, Central Intelligence Agency, and Nuclear Regulatory Commission.
Cognizant Security Office (CSO)
The organizational entity delegated by the head of a
CSA to administer industrial security on behalf of the CSA.
Communications Security (COMSEC)
Protective measures taken to deny unauthorized persons information derived from telecommunications of the U.S. government relating to national security and to ensure the authenticity of such communications.
Compromise
An unauthorized disclosure of information.
CONFIDENTIAL
The classification level applied to information, the unauthorized disclosure of which reasonable could be expected to cause damage to the national security that the original classification authority is able to identify or describe.
Contract Security Classification Specification
DD Form 254
Defense Security Service Center for Development of Security Professionals (CDSE)
A component of the Defense Security Service the CDSE supports the professionalization of the Department of Defense security community and provides security education and training for the Department of Defense and industry.
Department of Defense Contractor
Any industrial, educational, commercial, or other
entity that has been granted an FCL by a CSA.
DD Form 254
Contract Security Classification Specification
DD Form 441 (Security Agreement)
A Department of Defense Security Agreement that is entered into between a contractor who will have access to classified information, and the DoD in order to preserve and maintain the security of the U.S. through the prevention of unauthorized disclosure of classified information.
Defense Security Service (DSS) new name: Defense Counterintelligence and Security Agency (DCSA)
The Defense Security Service (DSS)/Defense Counterintelligence and Security Agency (DCSA) is an agency of the Department of Defense (DoD) located in Quantico, Virginia with field offices throughout the United States. The Under Secretary of Defense for Intelligence provides authority, direction and control over DSS. DSS provides the military services, Defense Agencies, 26 federal agencies and approximately 13,000 cleared contractor facilities with security support services. DSS/DCSA is the CSO for most DoD classified contracts.
DSS/DCSA supports national security and the warfighter, secures the nation’s technological base, and oversees the protection of US and foreign classified information in the hands of industry. DSS/DCSA accomplishes this mission by clearing industrial facilities, accrediting information systems, facilitating the personnel security clearance process, delivering security education and training, and providing information technology services that support the industrial and personnel security missions of DoD and its partner agencies.
Defense Security Service (DSS)/new name: Defense Counterintelligence and Security Agency (DCSA) Counterintelligence (CI) Office
Office within the Defense Security Service/Defense Counterintelligence and Security Agency that provides counterintelligence support to DSS/DCSA through CI reviews, assessments, analysis, and reports.
Defense Security Service/Defense Counterintelligence and Security Agency Facility Clearance Branch
The Defense Security Service (DSS)/Defense Counterintelligence and Security Agency (DCSA) Facility Clearance Branch processes contractors for Facility Security Clearance (FCL) based upon procurement need, issues FCLs, and monitors the contractor’s continued eligibility in the NISP.
Defense Security Service/Defense Counterintelligence & Security Agency, Foreign Ownership Control or Influence (FOCI) Office
This Operations Division within the Defense Security Service/Defense Counterintelligence and Security Agency that works with the local IS Rep to resolve issues that arise when a cleared facility or a facility being processed for a facility clearance is subject to foreign ownership, control or influence.
Defense Security Service/Defense Counterintelligence and Security Agency, Office of Designated Approving Authority (ODAA)
Office within the Defense Security Service/Defense Counterintelligence and Security Agency that facilitates the certification and accreditations process for information systems at cleared contractor facilities.
Defense Security Service/Defense Counterintelligence and Security Agency, Industrial Security Representative (IS Rep)
Local representative from the Defense Security Service/Defense Counterintelligence and Security Agency that provides advice and assistance to establish the security program and to ensure your facility is in compliance with the NISP.
Defense Security Service/Defense Counterintelligence and Security Agency, Information Systems Security Professional
Local representative from the Defense Security Service/Defense Counterintelligence and Security Agency, Office of Designated Approving Authority (ODAA) that provides advice and assistance visits to improve the security posture with regard to Information Systems and help facilitate the process of getting your information systems accredited to process classified information.
Eligibility
A central Adjudication facility (CAF) has made an adjudicative determination of member Personnel Security investigation (PSI) and that member may have access to classified information equal to level of investigation adjudicated.
Facility
A plant, laboratory, office, college, university, or commercial structure with associated warehouses, storage areas, utilities, and components, that, when related by function and location, form an operating entity. (A business or educational organization may consist of one or more facilities as defined herein) For the purposes of industrial security, the term does not include Government installations.
Facility (Security) Clearance (FCL)
An Administrative determination that, from a security viewpoint, a company is eligible for access to classified information of a certain category (and all lower categories).
Facility Security Officer (FSO)
A U.S. citizen employee, appointed by a contractor who will supervise and direct security measures necessary for implementing the NISPOM and other Federal requirements for classified information.
Foreign Interest
Any government, agency of a foreign government, or representative of a foreign government; any form of business enterprise or legal entity organized, chartered or incorporated under the laws of any country other than the United States or
its territories, and any person who is not a citizen or national of the United States.
Foreign National
Any person who is not a citizen or national of the United States.
Government Contracting Activity (GCA)
An element of an agency designated by the agency head and delegated broad authority regarding acquisition functions.
Industrial Security
That portion of information security concerned with the protection of classified information in the custody of U.S. industry.
Industrial Security Representative (ISR or IS Rep)
The person who represents the Defense Security Service for security matters that are covered by the NISP.
Information Security
The result of any system of administrative policies and
procedures for identifying, controlling, and protecting from unauthorized disclosure, information the protection of which is authorized by executive order.
Industrial Security Facilities Database (ISFD)
System of record for facility clearance information.
Industrial Security Letters (ISLs)
Documents that provide detailed operational guidance and notification of changes to or clarification of existing policies or requirements to the NISPOM.
Information Security Oversight Office (ISOO)
Office responsible for implementing and monitoring the NISP and for issuing implementing directives that shall be binding on
agencies.
Information System Security Manager (ISSM)
An individual appointed by a contractor with oversight responsibility for the development, implementation, and evaluation of the facility’s information system security program. The ISSM must be trained to a level commensurate with the complexity of the facility’s information systems.
Information System Security Officer (ISSO)
ISSOs may be appointed by the ISSM in facilities with multiple accredited information systems. The ISSM will determine the
responsibilities to be assigned to the ISSO in accordance with NISPOM Chapter 8.
Information System Security Professional (ISSP)
An employee of Defense Security Service assigned to the ODAA or to a DSS field element who provides advice and
assistance and participates in certification and inspections of information systems. An ISSP is a subject matter expert on information systems security in the NISP.
Joint Personnel Access System (JPAS)
The DoD system of record for contractor eligibility and access for personnel security clearances.
JCAVS
JPAS is comprised of two major subsystems, the Joint Adjudication Management System (JAMS) and the Joint Clearance and Access Verification System (JCAVS). JPAS = JAMS + JCAVS
JAMS provides Central Adjudication Facilities (CAFs) a single information system to assist in the adjudication process and standardizes core DoD Adjudication processes. JAMS is used by adjudicators to record eligibility determinations and
command access decisions, and promotes reciprocity between the DoD CAFs.
JCAVS is one of the two major subsystems of JPAS JCAVS provides security personnel the ability to constantly view eligibility information and update access information in real time. JCAVS also provides users the ability to constantly
communicate with other Security Management Offices and the DoD CAF.
Key Management Personnel (KMP)
Senior management identified in a facility that require an eligibility determination in order for a facility to be granted a facility clearance.
Need-to-Know (NTK)
A determination made by an authorized holder of classified
information that a prospective recipient has a requirement for access to, knowledge, or possession of the classified
information to perform tasks or services essential to the
fulfillment of a classified contract or program.
National Industrial Security Program (NISP)
The National Industrial Security Program (NISP) was established by Executive Order 12829 for the protection of classified information released or disclosed to industry in connection with classified contracts. The NISP applies standards for the protection of classified information released or disclosed to contractors of all federal executive branch departments and agencies. Requirements of the NISP are stated in the National Industrial Security Program Operating Manual (NISPOM), (DoD 5220.22-M).
National Industrial Security Program Operating Manual (NISPOM)
A manual issued in accordance with the National Industrial Security Program that prescribes the requirements, restrictions, and other safeguards to prevent unauthorized disclosure of classified of classified information.
National Security Council (NSC)
A governing entity responsible for providing overall policy direction for the National Industrial Security Program.
Personnel (Security) Clearance (PCL)
An administrative determination that an individual is eligible, from a security point of view, for access to classified information of the same or lower category as the level of the personnel clearance being granted.
Personnel Security Management and Oversight for Industry (PISMO-I)
Office within the Defense Security Service/Defense Counterintelligence and Security Agency that processes requests for, and other actions related to personnel security clearances for personnel from facilities participating in the NISP
Prime Contractor
The contractor who receives a prime contract from a GCA.
SECRET
The classification level applied to information, the unauthorized disclosure of which reasonably could be expected to cause serious damage to national security that
the original classification is able to identify or describe.
SF 312
Classified Information Nondisclosure Agreement
Special Access Program (SAP)
Any program that is established to control access, distribution, and to provide protection for particularly sensitive classified information beyond that normally required for TOP SERCRET, SECRET, or CONFIDENTIAL information. A Special Access Program can be created or continued only as authorized by a senior agency official delegated such authority pursuant
A program established for a specific class of classified information that imposes safeguarding and access requirements that exceed those normally required for information at the same classification level.
SAP is better known as “SAR” by the mandatory Special Access Required (SAR) markings
Standard Practice Procedures (SPP)
A document(s) prepared by a contractor that implements the applicable requirements of the NISPOM for the contractor’s operations and involvement with classified information at the contractor’s facility.
TOP SECRET
The classification level applied to information, the unauthorized disclosure of which reasonable could be expected to cause exceptionally grave damage to the national security that the original classification authority is able to identify or describe.
Transmission
The sending of information from one place to another by audio, microwave, laser, or other non-connective methods, as well as by cable, wire, or other connective medium. Transmission also includes movement involving the actual transfer of custody and responsibility for a document or other classified material from one authorized addressee to another.
