The Department of Defense (DoD) has published a final rule that seeks to prevent the unauthorized disclosure of classified information by establishing requirements to protect such data developed by or disclosed to contractors, grantees, certificate holders or licensees.
Contractors must comply with the requirements set in the final rule titled “National Industrial Security Program Operating Manual (NISPOM)” no more than six months from the effective date, DoD said Monday NISPOM will take effect Feb. 24th.
A Federal Register notice published Monday says the final rule adds NISPOM to the Code of Federal Regulations and integrates the requirements of Security Executive Agent Directive 3, which directs contractor personnel with access to classified data to “report specific activities that may adversely impact their continued national security eligibility, such as reporting of foreign travel and foreign contacts.”
Cognizant security agencies under the National Industrial Security Program should carry out an analysis of reported activities to determine if they pose a national security threat.
In accordance with the provisions of Section 842 of Public Law 115-232, the final rule eliminates the need for a National Technology and Industrial Base entity that operates through a special security agreement to secure a national interest determination in order to gain access to proscribed data.
Comments on the final rule are due Feb. 19th.