STANDARD OPERATING PROCEDURES (SOP) TEMPLATE

standard operating procedures (sop) template. sop topical outline (sample only) (activity name and address) approved: (pso) (yymmdd)...

15 downloads 862 Views 57KB Size
STANDARD OPERATING PROCEDURES (SOP) TEMPLATE SOP TOPICAL OUTLINE (Sample Only)

(ACTIVITY NAME AND ADDRESS)

APPROVED: (PSO)

(YYMMDD)

SOP TABLE OF CONTENTS - SAMPLE CHAPTER 1 - GENERAL PROVISIONS AND REQUIREMENTS Section 1. Introduction 1-100 Purpose ....................................................................................... 1-101 Scope ....................................................................................... 1-102 SAP Program Area .................................................................... 1-103 Waivers .................................................................... 1-104 Facility background and operating concept ............................. a. Temporary Secure Working Area (TSWA) ........................... b. Shared/Alternating/Co-utilization of Facilities ....................

x x x xx xx xx xx

Section 2. General Requirements 1-200 Responsibilities ............................................................................. a. SAP Central Office (SAPCO) ....................................... b. Program Security Officer (PSO) ....................................... c. Government SAP Security Officer (GSSO) .................... d. Contractor Program Security Officer (CPSO) .................... e. Program Management (GPM/CPM)....................................... f. Individual Program Personnel ....................................... 1-201 Badge Systems ............................................................................ a. Badge Control .................................................................... b. Badge Issue and Identification ....................................... c. Escort Procedures & Visitor Badges .................................... 1-202 Communications Security .......................................................... a. Secure Communications ................................................ b. STE/STU-III Operations ................................................. c. Secure Telephone Lines/Closets ....................................... 1-203 Security Inspections .......................................................... a. Government .......................................................... b. Self-Inspections ..........................................................

xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx

Section 3. Reporting Requirements 1-300 General ....................................................................................... 1-301 Security Violations and Improper Handling of Classified Information a. Security Violations and Infractions ............................. b. Inadvertent Disclosures ................................................... c. Preliminary Inquiries/Investigations ............................. d. Fraud, Waste, Abuse and Corruption (FWAC) ……………

xx xx xx xx xx xx

CHAPTER 2 - SECURITY CLEARANCES Section 1. Facility Clearances 2-100 General ....................................................................................... 2-101 Defense Security Services .......................................................... Section 2. Personnel Clearances and Access 2-200 General ....................................................................................... 2-201 SAP Access Procedures .......................................................... 2-202 Program Access Requests and Nomination Process ...................... 2-203 Suspension and revocation ..........................................................

xx xx xx xx xx xx

CHAPTER 3 - SECURITY TRAINING AND EDUCATION Section 1. Security Training and Briefings 3-100 General ....................................................................................... 3-101 Security Training ............................................................................. 3-102 Refresher Training .................................................................... 3-103 Computer-based training (CBT) ................................................ 3-104 Debriefing and/or access termination ....................................... 3-105 Personnel Security Reporting Requirements ............................... 3-106 Foreign Travel/Contacts ............................................................. 3-107 Specialized or event-driven training .......................................

xx xx xx xx xx xx xx xx

CHAPTER 4 - CLASSIFICATION AND MARKINGS Section 1. Classification 4-100 Classification management .......................................................... 4-101 Security Classification Guidance ................................................ 4-102 Nicknames, Code Words, and other Program Identifiers .......... 4-103 DD Form 254 requirements .......................................................... 4-104 Changes, challenges, and reviews ................................................ 4-105 Subcontractor classification guidance ....................................... 4-106 Use of Cover Sheets ………………………...

xx xx xx xx xx xx xx

Section 2. Marking Requirements 4-200 General ....................................................................................... 4-201 Program Specific ............................................................................. 4-202 File Exemption Series ...................................................................

xx xx xx

CHAPTER 5 - SAFEGUARDING CLASSIFIED INFORMATION Section 1. General Safeguarding Requirements 5-100 General ....................................................................................... 5-101 Clean desk policy ....................................................................

xx xx

5-102 5-103 5-104 5-105 5-106 5-107 5-108 5-109 5-110

Facility access controls .......................................................... Building access ............................................................................. Program SAPFs ............................................................................. Shared/alternating use area access ................................................ Common use area access .......................................................... Unescorted access .................................................................... After-Hours access .................................................................... Facility opening/securing procedures ....................................... Alarm System Procedures .......................................

Section 2. Control and Accountability 5-200 General ....................................................................................... 5-201 Program material tracking system ................................................ a. SAP Accountability .......................................................... SAP Transmission .......................................................... b. c. SAP Reproduction .......................................................... 5-202 Collateral material .................................................................... 5-203 Annual inventories .................................................................... 5-204 Working Papers and Engineer Notebooks …………………. Section 3. Storage and Storage Equipment 5-300 Storage policy ............................................................................. 5-301 Control of locks and combinations ................................................ 5-302 Security container records of use ................................................ Section 4. Transmission 5-400 General ............................................................................. 5-401 Preparation ............................................................................. 5-402 Couriers ............................................................................. 5-403 Secure facsimile and/or electronic transmission ............................. 5-404

U.S. Postal Services (USPS) .......................................................... a. Post Office box usage .......................................................... b. Receipt procedures (as required) .......................................

xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx xx

Section 5. Disclosure 5-501

a.

Need-to-Know

…………………………………………..

Section 6. Reproduction Section 7. Disposition and Retention 5-700 Termination of security agreement ................................................ 5-701 Retention of classified material ................................................ 5-702 Document reduction ....................................................................

xx

xx xx xx

5-703 5-704 5-705

Bids and proposals .................................................................... Methods of destruction .......................................................... Destruction procedures ..........................................................

Section 8. Construction and other Security Requirements 5-800 General ....................................................................................... 5-801 Physical security ............................................................................. 5-802 SAPFs identification .................................................................... 5-803 Prohibited items (Control of PEDs, etc) ........................................ 5-804 Magnetic media ............................................................................. 5-805 Access control and alarm system ................................................ 5-806 Security checks and inspections ................................................ 5-807 Alarm responses .............................................................................

xx xx xx

Normal Duty Hours .......................................................... After Hours .......................................................... Alarm Malfunctions/Alarm System Shutdown .................... Semi-Annual Alarm Response Checks .............................

xx xx xx xx xx xx xx xx xx xx xx xx

CHAPTER 6 - VISITS AND MEETINGS Section 1. Visits 6-100 General ....................................................................................... 6-101 Visit request procedures .......................................................... 6-102 Identification and control of visitors ....................................... 6-103 Non-program-briefed visitors ................................................ 6-104 Visitor records .............................................................................

xx xx xx xx xx

Section 2. Meetings 6-200 General ....................................................................................... 6-201 Host responsibilities ....................................................................

xx xx

CHAPTER 7 - SUBCONTRACTING Section 1. Prime Contracting Responsibilities 7-100 General ....................................................................................... 7-101 Determining clearance status of prospective subcontractors .......... 7-102 Security agreements and briefings ................................................

xx xx xx

CHAPTER 8 - AUTOMATED INFORMATION SYSTEMS (AIS) 8-100 General ....................................................................................... 8-101 Data Transfer Procedures (High to Low, etc) .................................

xx xx

a. b. c. d.

CHAPTER 9 - MISCELLANEOUS

Section 1. Emissions Security (EMSEC) Section 2. Operations Security (OPSEC) Section 3. Emergencies 9-300 General ............................................................................. 9-301 Protection of classified during emergencies ............................. 9-302 Access by emergency response personnel ............................. 9-303 Emergency after-hours access ................................................ FIGURES 1 2 3 4 5 6. 7.

xx xx xx xx

Nomination Form ....................................................................................... Visitor Register ................................................................................................. Security Container Record ............................................................................. Facility End-of-Day Security Checklist .......................................................... Temporary Relocation of Classified Material Log ....................................... Certificate of Destruction ............................................................................. Media Control Log .......................................................................................

xx xx xx xx xx xx xx

ANNEXES 1 Special Access Program and Facility Security Debriefings ............................. 2 Foreign Travel, Contact and Defensive Briefings ...................................... 3 Automated Information Systems Standard Operating Procedures (AIS SOP) ...

xx xx xx