Overview

Background

U.S. industry develops and produces the majority of our nation's defense technology—much of which is classified—and thus plays a significant role in creating and protecting the information that is so vital to our national security. The National Industrial Security Program (NISP) was established to ensure that cleared U.S. defense industry safeguards the classified information in their possession while performing work on contracts, programs, bids, or research and development efforts.

Responsibility

The National Security Council is responsible for providing overall policy direction for the NISP. The Director, Information Security Oversight Office (ISOO) is responsible for implementing and monitoring the NISP and for issuing directives that agencies under the NISP are required to implement. The Secretary of Defense (SECDEF) serves as the Executive Agent for the NISP. There are, however, four Cognizant Security Agencies (CSAs) under the NISP, including the Department of Defense (DoD), Department of Energy, Central Intelligence Agency, and the Nuclear Regulatory Commission. The SECDEF with the concurrence of the Secretary of Energy, Chairman of the Nuclear Regulatory Commission, and Director of Central Intelligence is responsible for the issuance and maintenance of the DoD 5220.22-M, "National Industrial Security Program Operating Manual" (NISPOM). (Note: The NISPOM may be downloaded from the DSS Web Site at www.dss.mil.) The DoD 5220.22-R, Industrial Security Program, is the guidance for the government’s responsibility for classified information in the possession of cleared U.S contractors.