this presentation is...
TRANSCRIPT
This presentation is UNCLASSIFIED
All classification markings reflected in this presentation are for
INFORMATIONAL PURPOSES ONLYINFORMATIONAL PURPOSES ONLY
This briefing is to provide a general overview. There are other sources of information available. This briefing is not intended to represent or imply any
contractual agreement between the U S Government and contractorcontractual agreement between the U.S. Government and contractor
St. Elizabeths D C lDocument Control
• All documents such as engineering drawings, specifications, technical diagrams, etc will be controlled at the Sensitive But Unclassified level.
• This level of control is “NOT” considered classified andThis level of control is NOT considered classified and there are no special clearances required to either access or to handle this information.
• A person should have a “Need-to-Know” before the information is released to them for review.
Safeguarding Sensitive But ClassifiedSensitive But Classified
Information
ObjectivesObjectivesUpon review of this briefing, you will be able to:• Define Sensitive But Unclassified information;• Demonstrate an understanding of the terms “need-to-
k ” d “ th i d di l ”know” and “unauthorized disclosure;”• Correctly mark your SBU information; • Identify the methods for the dissemination• Identify the methods for the dissemination,
transmission, destruction, and storage of SBU information; and
• Define the term “violation” and identify sanctions that can be imposed as a result of a violation.
Information SecurityThe purpose of the Information Security program isThe purpose of the Information Security program is
A system of policies, procedures, and requirements established to protectq pinformation that, if subjected to unauthorized disclosure, could reasonably be expected to
d t th ti l itcause damage to the national security.
Classified Information is:
Classified Information as defined byClassified Information, as defined by Executive Order 12958, as
d d i i f i dlamended, is information regardless of form that requires protection against unauthorized disclosure.
Even though SBU is not classified, it must be respected
and handled accord to the proper rules and policy.
Unauthorized Disclosure
A communication or physical transfer of sensitive information to an unauthorized
recipientrecipient
SBUSBU
SBU is information that is unclassified, but of a sensitive nature. Unauthorized disclosure of this information could have an adverse impact or on a person’s privacy or welfare, or it could have an impact on the conduct of a federal program, or hamper operations essential to the national interest.
SBU Information• Has no declassification date;• Retains its status until the person or agency with p g y
jurisdiction over the information makes a determination that it no longer requires protection against unauthorized disclosure;disclosure;
• Requires no clearance for access; however, a need-to-know is required.
• The Federal Government has determined the St. Elizabeths Project to be designated sensitive and it requires protection against unauthorized disclosurerequires protection against unauthorized disclosure.
• Strong penalties apply to parties who fail to comply with this requirement.
“Need-to-Know” is:A determination made by an authorized holder of information that a prospective recipient requiresinformation that a prospective recipient requires access to specific information in order to perform or assist in a lawful and authorized governmentalor assist in a lawful and authorized governmental function; i.e., access is required for the performance of official duties.
Access to SBU information is based on “Need-to-Know” as determined by the authorized holder of the information. Where there is uncertainty as to a person’s need-to-know, the holder of the information will request dissemination instructions from their next-level supervisor or the information’s originator. The holder will comply with any access and dissemination restrictionsdissemination restrictions.
Designating Information as SBUDesignating Information as SBU
Any Government employee or contractor working on the specific project may designate or mark information as SBU so long as the appropriate control measuresas SBU so long as the appropriate control measures and disclosures have been satisfied.
How Do I Mark FOUO Information?FOUO documents must be marked to alert holders that they contain information that requires protection against unauthorized disclosure.
FOUO, at a minimum, must be marked on the bottom of the page.
If it is a multiple page document, the front cover, back cover, title page, first page, and other internal pages must be marked in the same manner.
FIRST PAGE and INTERNAL PAGES –– Mark “FOR OFFICIAL USE ONLY”FIRST PAGE and INTERNAL PAGES –– Mark
“SENSITIVE BUT UNCLASSIFIED”
FRONT COVER, TITLE PAGE, and OUTSIDE BACK COVER – Mark the bottom “FOR OFFICIAL USE ONLY”
FRONT COVER, TITLE PAGE, and OUTSIDE BACK COVER – Mark the bottom “SENSITIVE BUT UNCLASSIFIED”
All Markings for Training Purposes Only
SENSITIVE BUT UNCLASSIFIED
• Store in a locked drawer or file unless sufficient physical access control How Do I Protect SBU?
p ymeasures are in place. A security container is not necessary.
• Send over authorized e-mail, but not to personal accounts (i.e., Yahoo, Hotmail, etc)
Do not post
• Do not post to public websites, blog sites, etc.
p
Phone/fax• Although not required, use secure phones and/or faxes if available. Be aware of
others who can overhear your conversation. When faxing FOUO, contact the recipient to ensure they are available to receive the fax when it comes in; don’t allow FOUO the material to remain on a fax machine for others to view
• Do not store with classified unless there is a correlation between the SBU and classified information; i.e., the information relates to a specific project
S• Properly destroy before disposal (degauss, shred, etc.).
SecureDestroy Storage
