Term
| How often shall contractors conduct a formal self-inspection consistent with risk management principles? |
|
Definition
At intervals consistent with risk management principles
Ref: NISPOM 1-206(3)b. |
|
|
Term
Which of the following is NOT a security rating of the Industrial Security Representative's overall assessement of the effectiveness of the security systems and procedures in place to protect classified inforamation at the facility? a. Superior b. Excellent c. Commendable d. Satisfactory e. Marginal f. Unsatisfactory |
|
Definition
| b. Excellent Ref: NISPOM 1-206, ISL 2006-02 #2 |
|
|
Term
| Security reviews may be conducted no more often than once every ____ months unless special cirumstances exist. |
|
Definition
|
|
Term
A ______ rating is assigned to contractors who have fully implemented the requirements of the NISPOM in an effective fashion resulting in a
commendable security posture, compared with other contractors of similar size and complexity. This rating denotes a security program with strong management support, the absence of any serious security issues and minimal administrative findings. |
|
Definition
Commendable
Ref: NISPOM 1-206 |
|
|
Term
| A ______ rating is reserved for contractors who have consistently and fully implemented the requirements of the NISPOM in an effective fashion resulting in a superior security posture, compared with other contractors of similar size and complexity. The facility must have documented procedures that heighten the security awareness of the contractor employees and that foster a spirit of cooperation within the security community. This rating requires a sustained high level of management support for the security program and the absence of any serious security issues. For more complex facilities, minimal administrative findings are allowable. |
|
Definition
Superior
Ref: NISPOM 1-206 |
|
|
Term
_________ is the most common rating and denotes that a facility’s security
program is in general conformity with the basic requirements of the NISPOM. This rating may be assigned even though there were findings in one or more of the security program elements. Depending on the circumstances, this rating can be assigned even if
there were isolated serious findings during the security review. |
|
Definition
Satisfactory
Ref: NISPOM 1-206 |
|
|
Term
| _______ rating indicates a substandard security program. This rating signifies a serious finding in one or more security program areas that could contribute to the eventual compromise of classified information if left uncorrected. The facility’s size, extent of classified activity, and inherent nature of the problem are considered before assigning this rating. A compliance security review is required within a specified period to assess the actions taken to correct the findings that led to the rating. |
|
Definition
Marginal
Ref: NISPOM 1-206 |
|
|
Term
________ is the most serious security rating. This rating is assigned when circumstances and conditions indicate that the facility has lost, or
is in imminent danger of losing, its ability to adequately safeguard the classified material in its possession or to which it has access. This rating is appropriate when the security
review indicates that the contractor’s security program can no longer preclude the disclosure of classified information to unauthorized persons. When this rating is assigned, the applicable government contracting activities are notified of the
rating and the circumstances on which that rating was based. In addition, a compliance security review must be conducted after a specified interval to assess the corrective actions taken before the contractor’s security rating can return to the Satisfactory level. |
|
Definition
Unsatisfactory
Ref: NISPOM 1-206 |
|
|
Term
Instances of redundant and duplicative security review and audit activity shall be reported to _____ for resolution.
a. Director, DSS
b. Director, CIA
c. Director, ISOO |
|
Definition
c. Director, ISOO
Ref: NISPOM 1-206a.(3) |
|
|
Term
| TRUE or FALSE At the discretion of the CSA, unannounced reviews may be conducted. |
|
Definition
TRUE
Ref: NISPOM 1-206a.(2) |
|
|
