NAESOC


The National Access Elsewhere Security Oversight Center (NAESOC) is designed to provide consistent oversight and security management for select facilities who do not possess classified information on-site ("access elsewhere").

Its capabilities include:

  • Coordinating: Communications, guidance, and education to facilities and government partners.
  • Providing: Continuous outreach, consistent direction.

These result in improved communications, threat reporting, and vulnerability identification & mitigation.

Download to schedule local ISAC or NCMS speaking request


 

Download to learn more about the NAESOC



If your company is an access-elsewhere company, the following are two ways to determine if your company transferred to the NAESOC:
Check your National Industrial Security System (NISS) profile
or
Check with your Facility Security Officer (FSO)


 

IMPORTANT: NAESOC General Mailbox Address Change
The mailbox address (for mail you are receiving) has been changed.  Your incoming email from the NAESOC will reflect: DCSA EASTERN DCSA Mailbox General Mailbox dcsa.eastern.dcsa.mbx.general-mailbox@mail.milas the sender of the email.  This does not reflect any actual change of email address for the NAESOC.  Please continue to send your correspondence to: dcsa.naesoc.generalmailbox@mail.mil.

NAESOC: Continued Support for the Access Elsewhere Community
The NAESOC’s third year supporting you.  With approximately 4,500 facilities assigned, it continues to administer the oversight mission for access-elsewhere companies.  It promulgates the National Industrial Security Program (NISP) by identifying and mitigating risk for selected non-possessing (access-elsewhere) facilities, those which do not have a requirement to maintain classified information at their location.  Even without classified information on site, these facilities are uniquely targeted by bad actors intending to exploit vulnerabilities in our nation’s security umbrella.

IMPORTANT: Updating Your NISS Profile
A reminder for the volume of facilities requesting recurring updates (NATO, Briefings, etc.): It may speed up your request if you use the Facility Profile Update (FPU) tool to maintain a current list of active classified contracts in your NISS profile. The FPU is listed in the Quicklinks on the NISS homepage. Simply click the link and browse to the "Customers and Programs" section to manage your list of DD254's."

NAESOC Presentations
When you request a NAESOC presentation for your Industrial Security association, you can choose among the three latest presentations we have available:

  • NAESOC Introduction: Beneficial for all audiences, this briefing addresses the “why”, “how” and “value add” of the NAESOC.
  • NAESOC Facility FSO Best Practices: Targeted for the FSO of a NAESOC facility or those FSOs who may have been notified that they are pending transfer to the NAESOC.  This presentation identifies NAESOC FSO Best Practices and provides an introduction to its multiple resources.
  • Counterintelligence and The NAESOC Facility: This presentation provides an introduction to those CI aspects associated with NAESOC facilities.

The Defense Industrial Base Vulnerability Disclosure Program (DIB-VDP)
NASEOC facilities are participating in the DIB-VDP Pilot. This 12-month voluntary event is established collaboratively by the Department of Defense Cyber Crime Center's (DC3) DIB Collaborative Information Sharing Environment (DCISE), the DoD Vulnerability Disclosure Program (DoD VDP), and the Defense Counterintelligence and Security Agency (DCSA). More opportunities to participate will be available. Be sure to check your email for an invitation.
 

KNOW YOUR CDSE SPEAKER SERIES – NAESOC EDITION
Learn more about the NAESOC. You can start with CDSE’s “Know Your CDSE” Speaker Series.  You will find information about the NAESOC and identified key knowledge and skills available to enhance Access Elsewhere facility security.
 

Voice of Industry (VoI) newsletters
You can access the most recent VoI Newsletter using the following steps:

1. Log into NISS.
2. Click "-NISS External Home Page" on the right sidebar of your Dashboard.
3. Under the blue Quick Links, click "Access the External Knowledge Base".
4. Within the same window, click the "Go to Knowledge Base" button.
5. The "Voice of Industry Newsletter" topic is posted as a featured article.

Questions & Answers from 2021 DoD Virtual Security Conference
During the 2021 DoD Virtual Security Conference, the National Access Elsewhere Security Oversight Center received several questions. Posted here are the questions and answers from the NAESOC session during the conference.
 

Security Incidents and Violations:
The DoD 5220.22-M defines a security violation as a failure to comply with the policy and procedures established by the NISPOM that reasonably could result in the loss or compromise of classified information.  Security incidents involving classified information must be appropriately reported to DCSA and investigated.

  • Facilities assigned to the NAESOC must immediately report security violations via NISS Messenger.  The Administrative Inquiry (AI) Process Job Aid provides instructions for conducting an AI and submitting the initial and final reports.

Actual or Potential Insider Threat:

  • Contractors shall report all relevant and available information indicative of a potential or actual insider threat. Please ensure reporting is made via NISS messenger when including Personally Identifiable Information.
  • The Reporting the Threat job aid and CDSE Insider Threat Content have been developed to support reporting and Establishing Insider Threat Programs.

Cyber Intrusions:

  • Facilities shall report cyber incidents or intrusions regardless of classification level of information or information systems involved in the intrusion provided the contractor determined that 1) circumstance of intrusion are sufficient to qualify as actual, probable, or possible espionage, sabotage terrorism, or subversive activities, and 2) these activities constitute a threat to the protection of classified information, systems, or programs that are otherwise covered by the NISPOM.
  • NAESOC Facilities shall report cyber intrusions via NISS messenger.

Suspicious Contact Reporting:

Adverse Information:
Adverse information consists of any information that negatively reflects on the integrity or character of a cleared employee, that suggests that his or her ability to safeguard classified information may be impaired, or that his or her access to classified information clearly may not be in the interest of national security. https://www.dcsa.mil/Portals/91/Documents/CTP/tools/ISL-2011-04-Revised.pdf It should be via DISS.

FCL Change Conditions:
Change Conditions are those organizational changes that could affect the Facility Clearance.

  • Change Conditions that are required to be reported include:
    • Ownership, including stock transfers
    • Legal Structure
    • Operating Name.
    • Principal Address
    • Key Management Personnel
    • Foreign Ownership, Control, or Influence(FOCI)
    • Bankruptcy
    • FCL Termination
    • Cage Code changes (rare)
  • Formal submission of Change Conditions are required to be completed in NISS as a FCL Change Condition Package. Please ensure business documentation is submitted to substantiate the reporting.
  • Note***- When entering discussions, consultations, or agreements that may reasonably lead to effective ownership or control by a foreign interest, the contractor shall immediately report the details to DCSA via NISS messenger.

Facility Profile Update Requests:
Facility Profile Update Requests–Information that can be edited by Industry users includes, but is not limited to new contracts, program assets, and essential Key Management Personnel and security staff contact information. Facility profile updates have replaced Request for Information so ensure to review your profile and submit timely updates.
*Note: Please ensure all of your appropriate DD Form 254s are submitted via NISS. *Note: FCL Change Conditions should not be submitted as a Facility Profile Update Request.

 

 

Check here first for how the NAESOC supports the FSO and how an FSO can effectively leverage NAESOC resources: The CDSE NAESOC for FSOs Webinar.

For the Government Contracting Authority, CDSE has developed the CDSE NAESOC for GCAs Webinar. As a complement to that webinar, please feel free to review this slick sheet.

NAESOC FSOs will benefit from completion of FSO Orientation for Non-Possessing Facilities (IS020.CU) curriculum.

FAQs for Controlled Unclassified Information (CUI) have been published. Download this Quick Start Guide for a greater understanding of CUI and your part in protecting it.

Many FSOs and GCA customers have benefited from learnings that have come from working with the NAESOC. Here is a list of FAQs that have been inspired by those:

FAQs of General Interest:

What is National Access Elsewhere Security Oversight Center (NAESOC)?  The National Access Elsewhere Security Oversight Center (NAESOC) is a centralized office providing consolidated and consistent oversight and security management for select access elsewhere companies in the National Industrial Security Program (NISP).  This office handles communications, guidance, and education for its assigned facilities and associated Government Partners.  The relationships and partnerships created by the new oversight center optimize communications, threat reporting, and vulnerability identification and mitigation.

What are the advantages/disadvantages of being assigned?  The NAESOC offers many advantages for an Access Elsewhere facility.   It is a centralized office, providing consistent oversight and security management for select facilities who do not possess classified information on-site. It:

  • Coordinates: Communications, guidance, and education to facilities and government partners.
  • Provides: Continuous outreach, consistent direction.
  • Creates: Improved communications, threat reporting, and vulnerability identification and mitigation.

Some may consider it a disadvantage they are no longer assigned to an ISR within a local Field Office. DCSA discovered that formerly, most AE facilities had not received effective risk prioritization because of capacity limits on that relationship. The lack of interaction with government security oversight resulted in an unidentified vulnerability factor.  The NAESOC reviews risk in a non-traditional way of doing business…a tiered response approach. Being assigned to a risk team ensures that your issues are addressed soonest by the correct expert.
 

Will I be notified that my facility is assigned to the NAESOC?  Yes.  If your facility is assigned to the NAESOC, your Facility Security Officer (FSO) will be notified by an automated notification from National Industrial Security System (NISS).  In addition, the NAESOC will send a “Welcome Letter” via email to the FSO.
 

Can I be reassigned to my former Field Office? Yes, if necessary.  Assignment to the NAESOC is based on many factors, including risk criteria. If specific thresholds are exceeded, your facility will be considered for assignment to a local field office.
 

I am already involved in my local industrial security council.  How will being in the NAESOC affect that?  The NAESOC supports and attends local security councils.  Please stay involved locally and feel free to ask for opportunities for the NAESOC to provide presentations and support for those meetings. The procedures to ask for the NAESOC to present can be found on our website.
 

Will my NISP requirements change under NAESOC oversight?  No.  The NAESOC provides oversight, support, and guidance consistent with NISPOM compliance requirements.
 

Do I have an assigned Industrial Security Representative (ISR)?  You will not have an individual ISR, however, you will have the NAESOC team as your DCSA POC.
 

How can I reach the NAESOC?  You can reach us via NISS Messenger, phone 888-282-7682 (Option 7), or email at DCSA.NAESOC.GeneralMailbox@mail.mil
 

How do I submit my Facility Profile Update? Instructions for updating you facility can be found in the NISS Knowledge Base with the Job Aid, “Submitting a Facility Profile Update Request”

What is NAESOC mailing address? (This is also used for all DD Form 254 completion)

NAESOC
Defense Counterintelligence and Security Agency (DCSA)
P.O. Box 644
Hanover, MD  21076

Do I have to change all the past DD Form 254s to reflect NASESOC as the Cognizant Security Office?  No.  However, all new DD Form 254s must reflect NAESOC as the Cognizant Security Office.

FAQs of Specific Interest to the FSO:

  • Where can I find FSO Training?

Industrial Security Short: You're a new FSO: Now What? ISS0047. CDSE updated this Industrial Security short that introduces the CDSE Facility Security Officer (FSO) program (minimum of 13 eLearning courses required for all FSOs). This short also provides newly appointed FSOs a high-level overview of their responsibilities and guides them to essential resources. (https://www.cdse.edu/Training/Security-Shorts/Industrial-Security-Shorts/)
 

The next Getting Started Seminar (GSS) for FSOs is scheduled to start February 8, and it is entirely virtual! This course is not only a great way to get started as a new FSO, but also a way for experienced FSOs to stay informed about policy changes, procedural changes, emerging trends, threats, concerns, etc. Students work in collaboration with other security professionals, exploring security topics through practical exercises. To learn more and register today visit (https://www.cdse.edu/Training/Virtual-Instructor-led-Courses/IS121/)

The New Self-Inspection Handbook has been published.

This handbook will assist you in complying with these requirements. These checklists are a starting point for establishing and managing an effective self-inspection program tailored to the security needs of your cleared company.
Download Instructions:
1. Login to NISS as the Facility Security Officer
2. Scroll down to the Quick Links section and select #3. "Access the External Knowledge Base"
3. When the quick links update to a new view DO NOT select the 4th hyperlink that says "Self-Inspection Handbook for NISP Contractors" - that link will get you the 2016 version. Instead, select the RED button that says "Go to Knowledge Base".
4. In the new view that opens the first link should be "Self-Inspection Handbook (June 2021).

  • CI

If we have foreign nationals visiting our site and need to know the proper procedure for reporting that information, where can I find it? Access the Foreign visit BrochureYou can also email us for specific guidance.

  • DISS

How do I get a DISS account?  Click DISS Account Request to be redirected to the DISS Resources page where you can find the “access request” tab.

What guidance can I provide to an employee who has involvement with marijuana/CBD? Please continue to monitor the DCSA website for updated information.  The following FAQ is the current guidance: "Are contractors in states that have enacted laws authorizing the medical use of marijuana, or in states that have enacted laws authorizing the use, possession, production, processing and distribution of marijuana, required to report use, possession, production, processing, or distribution of marijuana by cleared contractor personnel?  YES, any of these activities must be reported as adverse information in accordance with NISPOM paragraph 1-302.a." The same guidance applies for CBD.

  • BRIEFINGS

How do I get a NATO/COMSEC briefing, can you provide this to me?
In order to be briefed for NATO or COMSEC access, you must have an active, valid DD Form 254 showing justification for the access requirement.  Please use the Facility Profile Update tool (link) to upload the DD Form 254 justifying the need for access.  Please note that if your facility is a subcontractor on a NATO classified contract, you must have prior written approval from the GCA validating your need for NATO access in accordance with NISPOM 10-708.  Prior written approval from the NATO contracting activity can either be in the form of a flow-down letter from the GCA, or the GCA signature on the DD Form 254 requiring subcontractor NATO access.  Once the Facility Profile Update is completed, please send a signed NATO briefing, COMSEC briefing, or CNWDI to the NAESOC via email or NISS message. Include the reference number for the DD Form 254 which authorizes it.

 

Check out the NISS Main SharePoint Site for general NISS training and issues.
 

You can find the job aids posted on the right sidebar under “NISS Training”.

Is Your NISS Profile Accurate? 
The Industrial Facility Profile Updates Feature in NISS provides Industry with the ability to update information formerly collected using the paper Request for Information (RFI) and eliminates the need to complete the RFI form.  The job aid for Industrial Facility Profile Updates can be found in the NISS Knowledge Base under "Facility Profile Update Request - Full Operational Capability."  Log in today!

 

How do I request a NISS account?
Click here to be redirected to the DCSA NISS page: Registering for a NISS account

 

Who should I contact if I cannot get a NISS account due to an unassigned Industrial Security Representative (ISR)?
Contact the NAESOC Knowledge Center for support:  phone 888-282-7682 (Option 7), or email DCSA.NAESOC.GeneralMailbox@mail.mil

 

How do I send a message in NISS?
Within the NISS dashboard view, NISS Training Repository, go to External Resources and look for topic area “Messaging in NISS – Industry.”  If you need further instructions please email us.

 

How do I report Change Conditions affecting the Facility Clearance?
Within the NISS dashboard view, NISS Training Repository, go to External Resources and look for topic area “Reporting a Change of Condition.”  If you need further instructions please email us.

 

I have a draft Change Condition package that has not been reviewed, why am I not able to open another Change Condition package to send to you?
NISS only allows one Change Condition package opened at any given time.  If a draft package exists, archive the package and start a new Change Condition package.

 

INSIDER THREAT WEBEX
In order to identify the risks and mitigations regarding Insider Threat for Access Elsewhere facilities, the NAESOC has specifically prepared this webex for the requirements of the nonpossesing facility.

CHECK OUT INSIDER THREAT CASE STUDIES
Visit the following links to learn more about the Miriam Thompson (espionage) and Sudhish Kasaba Ramesh (sabotage) cases. https://www.cdse.edu/documents/cdse/case-study-miriam-thompson.pdf https://www.cdse.edu/resources/case-studies/case.html?Ramesh
Also, the Insider Threat team released a new Case Study on Jean Patrice Delia/Miguel Sernas, which covers a case of trade secret theft.  

COMMON INSIDER THREAT VULNERABILITIES
Insider Threat Awareness is such a vital part of your security program, please review those items that are key to you, as a NAESOC facility, in addressing your Insider Threat Program:

  • 2021 Insider Threat Virtual Conference Recordings. The 2021 Insider Threat Virtual Conference features senior level speakers and panelists who will present on the current state of DOD, federal, and industry insider threat programs; the importance of cultural awareness in combating the insider threat; strategies for developing positive organizational culture and sub-culture; and resources for training and professionalization of the insider threat practitioner community.
  • Establishing a Program Toolkit. This toolkit provides information on how to establish an InT Program and procedures for responding to an InT action.
  • Establishing an Insider Threat Program for Your Organization INT122.16 (cdse.edu). CDSE’s course provides guidance for organizational InT program managers on how to organize and design their specific program.
  • Organizational Culture and Countering Insider Threats. The United States Marine Corps Insider Threat Program shares a framework and examples of how organizational culture can counter insider threats.
  • Sample Insider Threat Program Plan for Industry. This sample plan provides recommendations for creating an InT program and can be tailored around your organization’s specific rules and guidelines.
  • Insider Threat Definitions Job Aid. This job aid acts as a quick reference glossary of commonly used words within the InT space in an easily accessible format for InT professionals.
  • Insider Threat Program for Industry Job Aid. Aimed at industry, this job aid provides information for InT professionals to establish an InT program, conduct InT training, report InT activity, and monitor network activity.
  • Insider Threat Reporting Job Aid. This job aid explains the reporting requirements and procedures for Federal agency employees and cleared contractors, and the consequences of failing to meet these guidelines.
  • Insider Threat and Industry Webinar. This webinar addresses the requirements for establishing an InT program, which includes developing an implementation plan to gather, share, and report relevant InT information from offices across the contractor’s organization.