How can I reach the NAESOC? You can reach us via NISS Messenger, phone 888-282-7682 (Option 7), or email at DCSA.NAESOC.GeneralMailbox@mail.mil
What is NAESOC mailing address?(This is also used for all DD Form 254 completion)
Defense Counterintelligence and Security Agency (DCSA)
P.O. Box 644
Hanover, MD 21076
Do I have an assigned Industrial Security Representative (ISR)? You will not have an individual ISR, however, you will have the NAESOC team as your DCSA POC.
How do I process a CI issue or report? It is very important to identify your local CI Special Agent (CISA) in NISS Some of the information CI shares with Reps is for information only and should not be released to industry. CI issues should be directly coordinated with your local CISA. If you require assistance in locating your CISA, please reach out to the NAESOC Help Desk.
How do I submit my Facility Profile Update? Instructions for updating you facility can be found in the NISS Knowledge Base with the Job Aid, “Submitting a Facility Profile Update Request”
How can I get FSO training?
Where can I find help of conducting my Self-Inspection?
You can start with a Best Practice of using the "Self Inspection Handbook for Contractors" which can be found at https://www.dcsa.mil/mc/isd/tools/. In it you will find eight checklists that are common to ALL NAESOC companies:
- Procedures [117.7]
- Reporting Requirements [117.8]
- Entity eligibility determination for access... [117.9]
- (Contractor) eligibility for access to classified... [117.10]
- Foreign Ownership, Control, or Influence (FOCI) [117.11]
- Security training and briefings [117.12]
- Classification [117.13]
- Visits and meetings [117.16]
Feel free to review the entire handbook before you begin it. It is full of Best Practices and ideas about how to ensure you understand and can support your security program.
The NISS Knowledge Base has a NISS guide for submitting the self-inspection. It can be found here:
- Log into NISS
- Select the Knowledge Base from the list of "Quick Links"
- In the search bar, type "Self"
- Open the link "Submitting an Annual Self-Inspection (Dec 2021)" to access these instructions.
Remember: In accordance with 32 CFR Part 117 NISPOM Rule, 117.7(h)(2)(ii), you must prepare a formal report describing the self-inspection, its findings, and resolution of issues found.
How do I get a NATO/COMSEC briefing, can you provide this to me?
In order to be briefed for NATO or COMSEC access, you must have an active, valid DD Form 254 showing justification for the access requirement.
A reminder for the volume of facilities requesting recurring updates (NATO, CNWDI, etc.): It may speed up your request if you use the Facility Profile Update (FPU) tool to maintain a current list of active classified contracts in your NISS profile. The FPU is listed in the Quicklinks on the NISS homepage. Simply click the link and browse to the "Customers and Programs" section to manage your list of DD254s.
Once the Facility Profile Update is completed, please send a signed NATO briefing, COMSEC briefing, or CNWDI to the NAESOC via email or NISS message. Include the reference number for the DD Form 254 which authorizes it.
If we have foreign nationals visiting our site and need to know the proper procedure for reporting that information, where can I find it? Access the Foreign visit Brochure. You can also email us for specific guidance.
I have just been notified that our company is being acquired by another company. Please ensure the change of ownership is reported within 15 days of the close of the acquisition. The change condition package shall include the purchase agreement/Member Interest transfer, an updated operating agreement, updated legal organization chart, exclusion resolutions (as applicable) as well as any additional business documentation to support subsequent changes to the facility post acquisition. If there is any foreign ownership associated with the acquiring company, please provide immediate notice so that we can begin the FOCI action plan prior to the close of the acquisition.
Where and when will the CI SVTC will be, around the country? These monthly briefings will be held on the second Thursday of each month. Locations will be the same, unless new ones are added or some are taken off the list due to IT issues or COVID-19 Health Protection Measures. The topics are fluid because they wait to send the announcements until they have confirmation from the briefers, and do not send them out until its confirmed. The topic is locked in about 30 days prior to the SVTC an email will be sent out asking for attendees. They will then send a link to a registration page. On that page, there will be the lists of locations hosting the SVTC.
What guidance can I provide to an employee who has involvement with marijuana/CBD? Please continue to monitor the DCSA website for updated information. The following FAQ is the current guidance: "Are contractors in states that have enacted laws authorizing the medical use of marijuana, or in states that have enacted laws authorizing the use, possession, production, processing and distribution of marijuana, required to report use, possession, production, processing, or distribution of marijuana by cleared contractor personnel? YES, any of these activities must be reported as adverse information in accordance with NISPOM paragraph 1-302.a." The same guidance applies for CBD.
Do I have to change all the past DD Form 254s to reflect NASESOC as the Cognizant Security Office? No. However, all new DD Form 254s must reflect NAESOC as the Cognizant Security Office.
How do I verify a facility’s clearance level? You will need to request the FCV Industry role in NISS to have ability to verify FCLs. You will then be able to verify that FCL within NISS.
How can I learn about CUI? FAQs for Controlled Unclassified Information (CUI) have been published. Download this Quick Start Guide for a greater understanding of CUI and your part in protecting it.
FAQs of General Interest:
What is National Access Elsewhere Security Oversight Center (NAESOC)? The National Access Elsewhere Security Oversight Center (NAESOC) is a centralized office providing consolidated and consistent oversight and security management for select access elsewhere companies in the National Industrial Security Program (NISP). This office handles communications, guidance, and education for its assigned facilities and associated Government Partners. The relationships and partnerships created by the new oversight center optimize communications, threat reporting, and vulnerability identification and mitigation.
What are the advantages/disadvantages of being assigned? The NAESOC offers many advantages for an Access Elsewhere facility. It is a centralized office, providing consistent oversight and security management for select facilities who do not possess classified information on-site. It:
- Coordinates: Communications, guidance, and education to facilities and government partners.
- Provides: Continuous outreach, consistent direction.
- Creates: Improved communications, threat reporting, and vulnerability identification and mitigation.
Some may consider it a disadvantage they are no longer assigned to an ISR within a local Field Office. DCSA discovered that formerly, most AE facilities had not received effective risk prioritization because of capacity limits on that relationship. The lack of interaction with government security oversight resulted in an unidentified vulnerability factor. The NAESOC reviews risk in a non-traditional way of doing business…a tiered response approach. Being assigned to a risk team ensures that your issues are addressed soonest by the correct expert.
Will I be notified that my facility is assigned to the NAESOC? Yes. If your facility is assigned to the NAESOC, your Facility Security Officer (FSO) will be notified by an automated notification from National Industrial Security System (NISS). In addition, the NAESOC will send a “Welcome Letter” via email to the FSO.
Can I be reassigned to my former Field Office? Yes, if necessary. Assignment to the NAESOC is based on many factors, including risk criteria. If specific thresholds are exceeded, your facility will be considered for assignment to a local field office.
Where can I find a list of Mandatory Annual Training Briefings that all cleared employees must complete regardless of clearance level or contract? Please refer to the 32 CFR section 117.12 Security Training and Briefings.
I am already involved in my local industrial security council. How will being in the NAESOC affect that? The NAESOC supports and attends local security councils. Please stay involved locally and feel free to ask for opportunities for the NAESOC to provide presentations and support for those meetings. The procedures to ask for the NAESOC to present can be found on our website.