PUSO Binder

Recommendations

Info

3) Maintaining security container combinations. Members are not authorized to maintain the combination in written or electronic form except: a. SF-700 or b. Master list, which must be handwritten and secured in a designated security container with access limited to the person or persons responsible for the maintenance of the list which may be the Office Director, Deputy Director, USO or Assistant USO. The goal is to minimize or limit access to those who have a requirement for the items in the specific safe they are being granted access to. 4) Individuals are responsible for all information in their space. It is recommended to complete an inventory of the security container upon receiving access. If the security container shared, the USO is responsible for ensuring an inventory is done. 5) Fill out and maintain SF-702 for 30 days. An individual should start a new form every month regardless of how many blocks are completed; the old form or the previous months form is maintained for 30 days at the end of each month. If the form is completed prior to the end of the month, a new form is started and both will be closed out and maintained at the end of the month. 6) 12 FAM 530 requires that “Open”/”Close” signs be placed on all storage containers. Office Access: There are three tasks associated with administering an office access program: granting, removing, and auditing access. All functions are essential elements in protecting the office’s classified information, systems, and storage devices, as well as personnel. 1. BSO will provide a USO roster to the Access Office quarterly (January, April, July, October) with the names of individuals authorized to grant access for their office. 2. Requesting Access: USO’s and AUSO’s can request office access for persons needing unescorted access to their spaces. USO and AUSO’s must provide an email to DS_DO_ACS at DS_DO_ACS@state.gov and CC the BSO with the following information: • Last, First Name: Lett, Dave N. • Badge number: 411812 • Security Level: S5 • Badge Expiration Date: OCT2017 • Access To: HST/ 5240 3. Removing Individual’s from Access: Utilizing the same format as above, you will request to remove departing personnel from the office access roster. 4. Audits: In accordance with 12 FAM 532, each office will conduct an access audit to ensure the access roster properly reflects persons with a working requirement to the entire space without escort. a. Access Audits will be conducted between March 1 through 15 each calendar year. b. Audit Request Format: As the USO/AUSO for (Office, Bureau) and in accordance with 12 FAM 532, I am requesting the door access Roster room (#) to conduct an access audit. c. Editing the roster: i. Line through any names on the roster that no longer need access to the space. ii. In order to add personnel to the roster, you will use the format above.
After Hours Checks 12 FAM 534. 1) The senior member of the office is ultimately responsible for the execution of After Hours/Closing Procedures Checks. 2) Employees designated to conduct closing hours’ security checks will, at a minimum: a. Ensure that all repositories containing classified material are secured; b. Ensure that all classified drives, typewriter, printer ribbons and laser printer cartridges are secured; c. Check the tops of all desks, including in and out boxes, and repositories to ensure that all classified and controlled material has been put away; and d. Make a visual check of the remainder of the office. * Offices may modify this process to better fit their operational needs but the method must be outlined in writing and maintained in the USO/AUSO binder. Annual Security Training: 1) Refresher Training - All cleared personnel are required to attend Annual Refresher Training per 12 FAM 564.2. Original Classification Authorities (OCA) Training – Those designated as OCAs must conduct training annually which may be found by going to http://diplopedia.state.gov/index.php?title=Original_Classification_Authority or going to PK323, Classified and Sensitive But Unclassified Information: Identifying and Marking via the FSI online training portal. 2) All others with access to classify information are Derivative Classifiers and must complete PK323 every two years. Program Evaluation Requirements: 12 FAM 512 identifies assessments as a key method to test the viability of the security program and ensure compliance with security regulations. Evaluations of the program also serve to build the knowledge of security professionals and others, as well as foster a positive working relationship. There are two types of inspections, compliance and management inspection. 1) Annual Self-Assessment Program – Designated by Executive Order 13526 and Information Security Oversight Office (ISOO) Directive Number 1, all agencies must have a self-inspection program, now referred to as the self-assessment program. a. At the bureau level, the self-assessment program should be administered by the senior security representative within that bureau. b. The self-assessment is a management level review which serves to aid internal controls, prepare for compliance inspections, and ensure that security measures are implemented in a costeffective and consistent manner.
Page 1 and 2: USO/AUSO WHA/EX/FRC Security Inform
Page 3: Security Requirements USO Responsib
Page 7 and 8: 3. The USO will also include a copy
Page 9 and 10: Left on an individual’s desk if t
Page 11: Security Orientation Acknowledgemen

PUSO Binder

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?