
























































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The importance of security education in ensuring individuals have the necessary skills, knowledge, and information to handle classified information securely. It outlines the required briefings and training for DOD personnel and industry contractors, including initial, refresher, insider threat, and termination briefings. It also covers the goals of security education and the consequences of non-compliance.
Typology: Schemes and Mind Maps
1 / 64
This page cannot be seen from the preview
Don't miss anything!

























































Student Guide
Course Overview
Working with classified information carries significant responsibilities. Organizations and individuals who handle classified information are charged with keeping it safe from accidental or intentional compromise.
As an employee responsible for managing a security program, you have a special duty to ensure that every individual in your organization is aware of their responsibilities in safeguarding classified information.
Welcome to the Developing a Security Education and Training Program course. In this course you will learn not only the policy requirements for a security education program, but also some best practices for developing and implementing such a program and a variety of instructional strategies and methods you can use to do so.
Course Objectives
Here are the course objectives. Take a moment to review them.
Course Objectives:
Student Guide
Course Structure
This course is organized into the lessons listed here.
Lessons:
Student Guide
What Is Security Education?
In order to develop an effective security education and training program, it is essential to have a strong understanding of what security education is and what it should achieve. There are, of course, regulatory requirements that outline what must be covered in such a program, and we will cover those requirements throughout this course. But it is also a valuable exercise for individuals responsible for providing security education and training to reflect on its purpose.
Security education is any activity undertaken to ensure that people have the skills, knowledge, and information to enable quality performance of security functions and responsibilities, understand security program policies and requirements, and maintain continued awareness of security requirements and intelligence threats.
An effective security education and training program enables cleared personnel to protect classified national security information and meet their security responsibilities. The success of such a program depends on four components: training, which instructs personnel in their specific security responsibilities; education, which informs personnel about underlying rationale and the importance of those responsibilities; and awareness, which ensures personnel remain continuously alert to security threats and vulnerabilities. Underlying all these components is motivation, or what instills in personnel a desire and commitment to be proactive in the execution of their security responsibilities.
Security Education and Training:
Basic Elements - TEAM Model suggested by Carl A. Roper, Joseph A. Grau, and Dr. Lynn F. Fischer in their book, Security Education, Awareness and Training.
Goals Pop-up:
The goals of a security education and training program are many. The most important outcome of effective security education is that it safeguards national security and protects the warfighter by improving the quality of the security program. More specifically, security education and training make personnel aware of their responsibilities and of the penalties and consequences of noncompliance.
Security education should also communicate threats to classified and sensitive information, promote security best practices and security awareness and provide guidance on how to apply security requirements. Perhaps most overlooked, a truly successful security education program will also attempt to dispel any negative attitudes and debunk any myths personnel hold regarding security requirements.
Major Goals of Security Education and Training:
Student Guide
Nondisclosure of Classified Information
The overarching legal requirement for security education appears in three executive orders: Executive Order 13526, which prescribes the “uniform system for classifying, safeguarding, and declassifying national security information”; Executive Order 12968, Access to Classified Information, the national level policy that identifies the requirement for Employee Education and Assistance; and Executive Order 12829, upon which the National Industrial Security Program is based. Executive Order 13526 mandates that for individuals to gain access to classified information, they must meet three criteria:
First, the individual must have been granted a security eligibility at the level of classification of the information to be accessed. Second, the individual must sign a Standard Form 312, or SF- 312, also known as the Classified Information Nondisclosure Agreement. Third, the individual must have a need-to-know the information. Prior to signing SF-312, the individual must receive a security briefing on the nature and protection of classified information. This briefing may either occur during the individual’s initial briefing or upon receiving eligibility, as long as the form is signed prior to access to classified information. The Information Security Oversight Office, (ISOO), provides a Briefing booklet with the information that should be covered in this initial security indoctrination.
Security Education and Training Requirements
As you learned, there are three Executive Orders that provide the legal requirement for security education. Executive Order 13526 mandates that every person who receives a favorable determination of eligibility for access receive training on the proper safeguarding of classified information and the sanctions imposed on those who fail to appropriately protect such information.
Additionally, it authorizes the Director of the Information Security Oversight Office, under the direction of the Archivist and in consultation with the Assistant to the President for National Security Affairs, to establish standards for agency security education and training programs. The order also lays out the requirement for agency heads to designate senior agency officials to establish and maintain these programs.
Executive Order 12968, Access to Classified Information, requires that agency heads educate
Student Guide
will be discussed in detail later in this course. In addition to the basic briefings listed here, this course will also discuss security briefings required under special circumstances.
DD Form 441:
Review Activity 1
Question (Multiple response)
Which of the following are goals of ongoing security education and training?
Select all that apply.
o Safeguard national security o Inform personnel of the penalties and consequences of non-compliance o Prevent personnel from learning of threats to classified information o Dispel negative attitudes and perceptions regarding security practices o Provide guidance on how to apply security requirements o Eliminate the need for formal security briefings
Answer: Of the items listed, Safeguarding national security; Dispelling negative attitudes and perceptions regarding security practices; Informing personnel of the penalties and consequences of non-compliance and; Providing guidance on how to apply security requirements are goals of ongoing security education and training.
Review Activity 2
Drag and Drop
Match each document to its description.
o DD FORM 441 o NISPOM o DODM 5200.01 Volumes 1- o DODM 5200.
Student Guide
o Executive Order 12968 o Standard Form SF-
Descriptions
Answers:
Summary
In this lesson, you learned about the purpose and importance of security education. You also learned about the policy documents that mandate security education and the key goals for a security education program.
Security Education and Training:
Student Guide
SF-312 Pop Up: Standard Form 312, Classified Information Nondisclosure Agreement
DOD Initial Briefings
The DOD has implemented the requirement for an initial security briefing in the following manuals: in Volume 3 of DODM 5200.01, the DOD Information Security Program, and in DODM 5200.02, Procedures for the DOD Personnel Security Program.
While the requirements laid out in the two manuals are similar in that both discuss the protection of classified information, they focus on different aspects of that important responsibility. The Initial Orientation mandated in the DODM 5200.01, Volume 3 outlines the classification system and establishes the policies that all employees must follow to protect classified information. The Initial Briefing mandated in the DODM 5200.02, on the other hand, focuses more on specific threats to classified information and job-specific actions to protect that information.
Information Security Initial Orientation:
DODM 5200.01 Volume 3 requires that all personnel in the organization, including DOD civilians, military members, and on-site support contractors, shall receive an initial orientation. The regulation suggests that the initial orientation should include the following: an explanation of security roles and responsibilities, such as the Senior Agency Official and Agency Security Personnel; a discussion of the elements of classifying and declassifying information, including a definition of the levels of classification, the process for declassification, and the procedures for challenging a classification status; and the elements of safeguarding, including proper safeguarding procedures, what constitutes compromise of classified information, and the procedures for transmitting classified information.
The DODM 5200.01, Volume 3 also requires an orientation briefing for personnel who are not eligible for access to classified information as they may inadvertently come into contact with classified information in their normal work environment. The initial briefing for uncleared personnel should include a brief explanation of the classification system and its importance and the steps they should take if they discover unsecured classified information or notice a security vulnerability.
Cleared Personnel:
Student Guide
More:
Security roles and responsibilities include the:
The initial briefing should discuss elements of classifying and declassifying information, including:
Personnel Security Initial Briefing:
DODM 5200.02 requires training for all individuals cleared for access to classified information, as well as any individuals with duties requiring a trustworthiness determination. This training must include security requirements specific to their particular job, techniques employed by foreign intelligence entities to obtain classified information, employee responsibility for reporting those attempts, the prohibition against disclosure of classified information to unauthorized individuals, the responsibility for continuous evaluation of one’s own and others’ security activities, and the penalties that may be imposed for security violations.
Topics covered:
Student Guide
More: In addition to the DCSA website, you may wish to access some of the following resources:
CI: Counterintelligence
Counterintelligence Awareness
The next topic included in the initial security briefing is counterintelligence awareness. The primary counterintelligence awareness tools are employee vigilance and awareness of threats. Cleared employees should be made aware that they may be targeted by foreign intelligence entities and must be sure to have the proper authority to release information to foreign nationals, if so required, prior to allowing them access.
Perhaps even more dangerous than external perpetrators of espionage are internal employees who have been compromised. There are several common warning signs of an insider threat, of which all employees should be aware. They include attempts to gain access to classified information without a valid need-to-know or without the required security eligibility, unauthorized reproduction or removal of classified material from the work area and deliberate destruction of documents, unexplained affluence, and foreign travel on a regular basis and without sufficient explanation.
Topics:
Student Guide
o Unauthorized reproduction or removal of classified material o Unexplained affluence o Foreign travel without sufficient explanation
Classification System
All employees must have a thorough understanding of the security classification system. The initial briefing should cover the difference between original and derivative classification, the three levels of classified information, the procedures for classifying and marking information, the importance of having and maintaining a system of control measures to ensure that classified information is available only to authorized individuals, the importance of appropriate controls and safeguards to protect classified information, prohibitions against the improper use of classified information and the abuse of the classification system, and procedures for challenging classification decisions. In addition, the initial briefing should also cover what Controlled Unclassified Information (CUI) is and the importance of protecting it.
Security Classification System Overview:
CUI: Controlled Unclassified Information- As defined in the 32 CFR 2002.4(h), CUI is information the Government creates or possesses, or that an entity creates or possesses for or on behalf of the Government, that a law, regulation, or Government-wide policy requires or permits an agency to handle using safeguarding or dissemination controls. In accordance with DODI 5200.48, CUI does not include classified information or information a non- executive branch entity possesses and maintains in its own systems that did not come from, or was not created or possessed by or for, an executive branch agency or an entity acting for an agency.
Continuous Evaluation and Reporting
Any security program is based to a large extent on individual trust and responsibility, and employee evaluation and reporting requirements are critical elements in the program. As part of the initial briefing, you must inform employees of their individual responsibility for continuous evaluation, or CE, and reporting.
Student Guide
o Any loss, compromise, or suspected compromise of classified information in your possession or in the possession of another person o Receipt of classified material not related to a classified contract, project, or program for which no safeguarding or disposition instructions have been received o Any instances in which classified material is out of the control of the custodian or which cannot be readily located
Cybersecurity Awareness
The Cybersecurity portion of the briefing should include the definition of cybersecurity, explain that it is authorized for all information system users, and covers some of the "dos" and "don’ts" of cybersecurity. Cybersecurity training and awareness products developed by DISA will be used to meet the baseline user awareness training.
Topics:
Job-Specific Security Responsibilities
The last topic that needs to be covered in the initial briefing are job-specific security procedures and duties. These are security responsibilities that are tailored to specific job roles. For example, an administrative specialist would have very different concerns in protecting classified information than would an engineer.
For an engineer, you might stress procedures regarding scientific meetings where representatives of foreign countries will attend and the procedures pertaining to working papers. Remember that this briefing should be as specific and thorough as you can make it, with as much hands-on demonstration of security procedures as possible.
Job-Specific Security Responsibilities:
Student Guide
Refresher Training & Continuing Education
The DODM 5200.01,Volume 3, DODM 5200.02, and the NISPOM all mandate that all cleared personnel attend refresher training at least annually. Refresher training must reinforce the information covered in the initial briefing and in any specialized training including security policies, principles, and procedures, and penalties for engaging in espionage and other security violations. This training must address new threats and foreign intelligence techniques and discuss any changes in security regulations. It should also address any issues or concerns identified during security inspections and self-inspections. The content and format of refresher briefings should be tailored to meet the needs of the audience of experienced personnel.
In addition to annual refresher training, the DODM 5200.01, Volume 3 requires continuous and ongoing education for all cleared personnel. This continuing education should supplement periodic briefings, training sessions, and formal presentations and may take the form of informational and promotional efforts or job performance aids. Maintaining records of attendance at refresher training sessions allows you to keep track of who has received the training. These records must include the topics covered in the session and the names of all attendees.
Refresher Training:
Student Guide
Type References Briefing Notes DOD or Industry?
Initial NISPOM Topics: Industry Briefing (^) • Threat awareness
Information Security Initial Orientation
DODM 5200.01, Vol. 1–
Focus: Classification system
DOD
Personnel DODM Focus: Threats to classified information and job- DOD Security 5200.02 12.1.c. specific actions to protect information Initial (^) • Specific security requirements for particular Briefing (^) job
Student Guide
Threat DODM Topics DOD and Awareness 5200. NISPOM
Industry
Counter- intelligence Awareness
DODM
NISPOM
Topics
DOD and Industry
Continuous Evaluation and Reporting Obligations
DODM
NISPOM
Topics
DOD and Industry