Information Security Oversight Office (ISOO)

Responsible Parties for NISP & Partnerships

The Information Security Oversight Office

Executive Order 12829 requires the Information Security Oversight Office (ISOO) to exercise policy oversight on behalf of the National Security Council. Sec. 102(b) set forth the Director of ISOO responsibilities which include implementing and monitoring the NISP and overseeing agency, contractor, licensee, and grantee actions in order to ensure that they comply with Executive Order 12829. ISOO also reviews all agency regulations, internal rules,conducts on-site reviews of the implementation of the NISP by any agency, contractor, licensee, and grantee that has access to or stores classified information. Additionally, ISOO reports annually to the President on the implementation of the NISP.

The following federal agencies provide advice, assistance and oversight as Cognizant Security Agencies within the NISP. Each must have procedures for oversight and administration of contracts requiring access to classified information within their agencies.

Secretary of Defense

The NISP assigns operational oversight to the Secretary of Defense, who acts as the Executive Agent of the NISP, and has final responsibility for issuing and maintaining the  National Industrial Security Program Operating Manual (NISPOM). The NISPOM gives practical application to the objectives of the NISP by serving as the single regulatory standard for the NISP. It's a living document that is constantly being reviewed and updated to fit the changing landscape of industrial security.

The Director of the  Defense Counterintelligence and Security Agency (DCSA) administers the NISP on behalf of the Secretary of Defense and 33 other federal agencies. DCSA  serves as the Cognizant Security Office (CSO) for the DoD and is responsible for inspecting and monitoring the contractors, licensees, and grantees that require access to classified information.

The Secretary of Energy and the Nuclear Regulatory Commission

under Sec. 201-The Secretary of Energy and the Nuclear Regulatory Commission shall prescribe and issue that portion of the NISPOM that pertains to information classified under the Atomic Energy Act of 1954, as amended (42 U.S.C. 2011 et seq.)

Office of the Director of National intelligence

under Sec. 201-The Office of the Director of National intelligence shall prescribe and issue that portion of the NISPOM that pertains to intelligence sources and methods, including Sensitive Compartmented Information.

*Notes-

The list is now amended to include the Department of Veterans Affairs, which entered into an agreement with the Department of Defense on May 8, 2019. The addition(s) makes the Department of Veterans Affairs the 33rd non-DoD agency(ies)* for which the Department will provide industrial security services.

 


Memorandum of Understanding (MOU) Members 

The MOU Organizations represent a commitment to work together on areas of mutual interest in the NISP and to promote collaboration between their organizations and the NISP. The representatives seek opportunities for cooperative efforts and share best practices. They also seek to encourage and  partner in training and development of both group’s members. Through this collaboration, they will explore the joint use of communication capabilities to promote cooperation, reciprocal activities and mutually beneficial initiatives that will ultimately benefit industrial security. 

AIA ISC-  Kai Hanson National Classification Management Society (NCMS)-Aprille Abott Professional Services Council (PSC)- Charlie Sowell
Contractor Special Security Working Group (CSSWG)- Joseph Kraus ASIS D&IC-Matt Hollandsworth

Federally Funded Research and Development Centers (FFRDC)/University Affiliated Research Centers (UARC) - Shawn Daley 

Industrial Security Working Group (ISWG)-Marc T. Ryan

National Defense Industrial Association (NDIA)-Rick Lawhorn Intelligence and National Security Alliance (INSA)- Kathy Pherson
Top