News | Feb. 26, 2021

32 Code of Federal Regulation Part 117, NISPOM is now in effect. Cleared contractors under DOD cognizance must implement and comply within six months.

The NISPOM rule at 32 CFR Part 117, “National Industrial Security Program Operating Manual,” became effective on February 24, 2021. The rule stipulates that contractors must implement changes no later than six months after the date of the published rule. The exact implementation date will be published in an Industrial Security Letter (ISL). The ISL will also provide further guidance about the rule’s implementation.   

The rule implements policy, assigns responsibilities, establishes requirements, and provides procedures consistent with Executive Order 12829, “National Industrial Security Program;” Executive Order 10865, “Safeguarding Classified Information within Industry;” and 32 Code of Regulation Part 2004, “National Industrial Security Program.” That guidance outlines the protection of classified information that is disclosed to, or developed by contractors, licensees, grantees, or certificate holders to prevent unauthorized disclosure.

The Key Changes include:

  • Section 117.8(a); Reporting Requirements: Cleared contractors must submit reports pursuant to Security Executive Agent Directive (SEAD) 3 and cognizant security agency (CSA) guidance that supplements unique CSA mission requirements.
  • Section 117.9(m); Limited entity eligibility determination (Non-FOCI) and limited entity eligibility: The limited facility clearance provides an additional facility clearance  tool for DCSA and government contracting activities as a limited entity eligibility is specific to the requesting GCA’s classified information, and to a single, narrowly defined contract, agreement, or circumstance.
  • Section 117.11(d)(2)(iii)(A); National Interest Determination (NID): Requirement for NIDs is removed for certain covered contractors operating under a special security agreement with ownership by countries designated as part of the National Technology Industrial Base (United Kingdom, Canada or Australia).
  • Section 117.15(e)(2); TOP SECRET Information Accountability: Permits specific determinations by a CSA with respect to requirements for TOP SECRET accountability.
  • Section 117.15(d)(4); Intrusion Detection System (IDS) Installation: Allows for UL-2050 certification by an Office of Occupational Health and Safety Agency (OSHA) National Recognized Test Laboratory (NRTL)
  • Section 117.15; Safeguarding: Directs cleared contractors to refer to 32 CFR Part 2001, for direction on requirements for the protection of classified national security information (CNSI) to ensure consistency with national policy. This change is in addition to CSA approval and compliance with intelligence community specification (ICS) 705.
  • Section 117.7(b)(2); Senior Management Official (SMO): Clarifies key responsibilities for SMOs.
  • Section 117.13(d)(5); Classified Information Retention: Clarifies for the contractor that upon completion of a classified contract, the ‘‘contractor must return all government provided or deliverable information to the custody of the government.”

 

How is DCSA Supporting Implementation?

DCSA is working on a wide-range of updates to support implementation by cleared industry under DOD cognizance and to enable oversight. This includes but is not limited to:

  • Developing communications and briefing materials for use by DCSA staff in engagements with cleared industry and government partners. 
  • Coordinating with industry partners and groups for web based conference engagements on implementation strategies, questions and answers, to ensure a consistent approach by both industry and DCSA.
  • Reviewing existing industrial security letters (ISL’s) to determine those required to be retained and re-issued, and identifying those that can be rescinded based on revisions to the NISPOM rule.

 

  • Reviewing and revising industry products, tools, and systems including but not limited to CDSE training, tools and products; the National Industrial Security System (NISS), externally posted tools, and internal tools used in oversight.
  • Coordinating with DOD and the Office of Management and Budget for administrative revisions to NISP-related forms under DCSA management to reflect the change from the NISPOM to the federal rule. This includes the SF-328 - “Certificate Pertaining to Foreign Interest,” DD Form 44 – “Security Agreement,” and DD Form 441-1 – “Security Agreement Addendum.”

 

  • Planning in coordination with government partners and cleared industry for the implementation of Security Executive Agency Directive (SEAD) 3 reporting requirements.

What has DCSA done to enable better understanding of the new rule?

 

DCSA will continue to provide updates to industry and update products to support implementation. DCSA intends to launch a dedicated webpage for NISPOM rule implementati

DoD CAF (Adjudications) FY21 Year In Review Annual Report now available
May 26, 2022 - The DoD Consolidated Adjudications Facility (DOD/CAF) announces its second annual report covering FY21. The Annual Report highlights Adjudications many accomplishments and continuous efforts to improve DoD-assigned adjudications and related personnel security eligibility determinations-in terms of business processes and streamlining security clearance processing timeliness. The Annual Report can be found here. Click the title for more information.

ATTN EXECUTIVE JOB SEEKERS interested in National Security!
May 16, 2022 - DCSA is proud to announce four new Regional Director positions: Mid- Atlantic (Alexandria, VA), Eastern (Andover, MA), Central (Farmers Branch, TX), and Western (EITHER San Diego or Los Angeles, CA). If you have a working knowledge of DCSA's mission's including Background investigations, Industrial Security, and Counterintelligence/Insider Threat; expert knowledge of Defense security programs, current regulatory guidance, operational procedures as well as an expert understanding of the defense industrial base; demonstrated experience building collaborative relationships with customers, industry representatives and other stakeholders and demonstrated experience leading diverse teams. One of these positions may be the job for you! Apply online by June 13: https://www.usajobs.gov/job/654037100#A.

The Pathway for NBIS Industry Onboarding
May 12, 2022 - As part of Industry onboarding into the National Background Investigation Services (NBIS) system, the Defense Counterintelligence and Security Agency (DCSA) will leverage a ServiceNow platform, to host a NBIS Industry Onboarding Portal.  ServiceNow is the same platform used for Secure Web Fingerprint Transmission (SWFT) and Defense Information Security System (DISS) statuses, notifications and support services. The NBIS Industry Onboarding Portal will enable Industry Partners to conveniently and effectively onboard into the NBIS system where they have access to an interactive onboarding readiness checklist; training repository; streamlined system access request process, and support. DCSA is currently testing and preparing the portal for Industry Onboarding. Please check back for additional updates or for additional information on NBIS Industry Onboarding, please visit the NBIS Industry Onboarding website.

Enterprise Mission Assurance Support Service Computer Based Training
May 6, 2022 - The National Industrial Security Program (NISP) Authorization Office (NAO) is pleased to announce that the Enterprise Mission Assurance Support Service (eMASS) Computer Based Training (CBT), Course DISA100.06, is now available on the Center for Development of Security Excellence (CDSE) Security Training, Education, and Professionalization Portal (STEPP) (https://cdse.usalearning.gov/login/index.php). Industry users can now complete this NISP eMASS account prerequisite on the CDSE STEPP site. This capability enables ease of access for our industry partners. For more information on obtaining a NISP eMASS, please reference the NISP eMASS User Account Request guide located here: https://www.dcsa.mil/mc/isd/tools/. Please contact the DCSA NAO eMASS Team, dcsa.quantico.dcsa.mbx.emass@mail.mil, with any questions.

NBIS guidance: Industry personnel in DISS SMOs
May 6, 2022 - Accurate and streamlined data migration from legacy systems to the National Background Investigation Services (NBIS) system is critical to minimize mission impact. The Defense Counterintelligence and Security Agency (DCSA) continues Data Quality Initiatives (DQIs) to ensure accurate data is transitioned from the Defense Information System for Security (DISS) data prior to the National Background Investigation Services (NBIS) system transition. To prepare for data migration, DCSA recommends Industry Facility Security Officers (FSO) verify that all employees with clearance eligibility are listed within associated DISS Security Management Offices (SMOs) prior to transition to NBIS. It is requested that Industry Partners continue to properly manage their employee populations in DISS as this will aid with data migration and transition to NBIS. For more details on SMO consolidation, refer to the DISS to NBIS Industry Hierarchy Preparation Guidance available on the NBIS Industry Onboarding website, https://www.dcsa.mil/is/nbis/onboarding/ind_onboarding/.