Responsible Parties for NISP
The Information Security Oversight Office
Executive Order 12829 requires the Information Security Oversight Office (ISOO) to exercise policy oversight on behalf of the National Security Council. Sec. 102(b) set forths the Director of ISOO responsibilities which include implementing and monitoring the NISP and overseeing agency, contractor, licensee, and grantee actions in order to ensure that they comply with Executive Order 12829. ISOO also reviews all agency implementing regulations, internal rules or guidelines, as well as conducting on-site reviews of the implementation of the NISP by each agency, contractor, licensee, and grantee that has access to or stores classified information. Additionally, ISOO reports annually to the President on the implementation of the NISP.
The following federal agencies provide advice, assistance and oversight as Cognizant Security Agencies within the NISP. Each must have procedures for oversight and administration of contracts requiring access to classified information within their agencies.
Secretary of Defense
The NISP assigns operational oversight to the Secretary of Defense, who acts as the Executive Agent of the NISP, and has final responsibility for issuing and maintaining the National Industrial Security Program Operating Manual (NISPOM). The NISPOM gives practical application to the objectives of the NISP by serving as the single regulatory standard for the NISP. It's a living document that is constantly being reviewed and updated to fit the changing landscape of industrial security. As the Executive Agent, the Secretary of Defense also provides cost information on the implementation of the NISP.
The Director of the Defense Security Service (DSS) administers the NISP on behalf of the Secretary of Defense and 28 other federal agencies. DSS serves as the Cognizant Security Office (CSO) for the DoD. DSS is responsible for inspecting and monitoring the contractors, licensees, and grantees that require access to classified information.
The Secretary of Energy and the Nuclear Regulatory Commission
under Sec. 201-The Secretary of Energy and the Nuclear Regulatory Commission shall prescribe and issue that portion of the NISPOM that pertains to information classified under the Atomic Energy Act of 1954, as amended (42 U.S.C. 2011 et seq.)
Office of the Director of National intelligence
under Sec. 201-The Office of the Director of National intelligencee shall prescribe and issue that portion of the NISPOM that pertains to intelligence sources and methods, including Sensitive Compartmented Information.