SUPPORTING STATEMENT
By Defense Security Services (DSS)
“Defense Security Service Industrial Security Review Data” and
“Defense Security Service Industrial Security Facility Clearance Survey Data”
Need for Information Collection
Executive Order (EO) 12829, “National Industrial Security Program (NISP),” Section 202 (a) stipulates that the Secretary of Defense shall serve as the Executive Agent for inspecting and monitoring the contractors, licensees, and grantees who require or will require access, to or who store or will store classified information; and for determining the eligibility for access to classified information of contractors, licensees, and grantees and their respective employees. The specific requirements necessary to protect classified information released to private industry are set forth in DoD 5220.22-M, “National Industrial Security Program Operating Manual (NISPOM).” The Executive Agent has the authority to issue, after consultation with affected agencies, standard forms or other standardization that will promote the implementation of the NISP. Contractors participating in the NISP are subject to an initial Facility Security Clearance (FCL) Survey and periodic Security Reviews to determine their eligibility to participate in the NISP and to ensure that safeguards employed are adequate for the protection of classified information. The Cognizant Security Agency (CSA), designated by the NISPOM, is responsible for determining the frequency of Security Reviews which may be increased or decreased for sufficient reason, consistent with risk management principles. Department of Defense Directive 5105.42, “Defense Security Service,” delineates the mission, functions and responsibilities of DSS. DSS is an Agency of the Department of Defense, currently under the authority of the Under Secretary of Defense for Intelligence (USD(I)). DSS functions and responsibilities include the administration and implementation of the Defense portion of the NISP.
Use of the Information
DSS is the office of record for the maintenance of information pertaining to facility clearance records and security information regarding cleared contractors in the NISP under its security cognizance. The Facility Clearance Survey and Security Review Data elements are used to assess and advise Government Contracting Agencies regarding the contractor’s ability to protect classified information in its possession. The information is also used to respond to inquiries regarding the facility’s clearance status and storage capability of cleared contractors. Information collected during the Survey or Review may be provided to federal, state and local government agencies if necessary to obtain information for an interim personnel security clearance or making a personnel security determination concerning retention in a sensitive position or letting a contract. Information may be provided to a congressional office in response to an inquiry from the individual, to domestic or foreign law enforcement, security, investigative, or administrative authorities to comply with domestic and international agreements. The Department of Justice may receive information in support of pending or potential litigation to which the records are pertinent. For records management purposes, Survey and Security Review Data may be provided to the General Services Administration and National Archives and Records Administration. Copies of the Survey and Security Review Data may also be provided for counterintelligence activities, authorized by Federal Law or Executive Order, within and outside DoD or the U.S. Government. Contractors are required to maintain security records pertaining to their Facility Clearance, Cleared Personnel, Training, Top Secret Information/Equipment (over 30 days old), Approved Security Containers, Information Systems, Intrusion Detection Systems and Foreign Classified Contracts, etc., for the duration of their participation in the NISP. Records pertaining to the retention of classified material upon completion of a contract must also be kept.
Use of Information Technology
The FCL Survey and subsequent Security Reviews require an onsite visit at the contractor’s location with personal interviews and physical security inspections. Contractors may provide supplemental information, Standard Practice Procedures, corrective actions, change conditions and/or administrative inquiry reports via the utilization of information technology (e.g., Electronic Mail (E-mail), CD-ROM, and Floppy Disk). Portions of the data collected may be stored in databases within DSS for records management purposes. In addition, as part of the DoD Transformation process, DSS established the Industrial Security Facility Database (ISFD), an automated information system to handle Industrial Security information processing needs. Contactors have been provided limited access to this data base through the Facility Verification Request application. The application is web-enabled and provides contractors with information pertaining to a facility’s clearance status. DSS is also responsible for managing the Department of Defense’s Joint Personnel Adjudication System (JPAS). JPAS contains personnel security clearance information for military, DoD civilian and contractor personnel. Contractors participating in the NISP have been given direct access to JPAS and have the ability to review, verify and update personnel security clearance information electronically.
Efforts to Identify Duplication
Pursuant to EO 12829 there are four CSAs who are signatories to the NISP, the Department of Defense, Department of Energy (DoE), Central Intelligence Agency (CIA) and the Nuclear Regulatory Commission (NRC). Although the Secretary of Defense is designated as the Executive Agent for the NISP and the NISPOM, the Secretaries/Director of DoE, NRC, and CIA prescribe and issue the portion of the Manual that pertains to information classified under the Atomic Energy Act of 1954 or intelligence sources and methods, including Sensitive Compartmented Information. The Secretaries/Director of DoE, NRC and CIA retain the right to inspect and monitor contractors, licensees and grantee programs and facilities that involve access to such information or may enter into agreements with the Secretary of Defense to inspect and monitor these programs in whole or in part, on their behalf. DSS and DoE have entered into an agreement to reciprocally accept each other’s Facility Clearance process. The heads of other Federal Government Agencies are required by EO 12829 to enter into agreements with the Secretary of Defense that establish the terms of the Secretary’s responsibilities on their behalf.
Methods Used to Minimize Burden on Small Entities
This collection of information does not have a significant impact on small businesses or other entities. Individuals who provide their services through their own business entities (e.g., corporation, LLC), have no employees requiring clearances and do not require storage for classified material may be cleared as consultants thereby eliminating the requirement for an FCL. In addition, branch offices that do not require approval for classified storage are no longer required to have an FCL. In both instances, the contractor is no longer subject to Security Reviews and/or FCL Surveys.
Consequences of Not Collecting the Information
If the data is not collected periodically/on occasion (e.g., initial facility clearance processing, when the respondent changes ownership/organizational structure; location; or upon request), DSS will not be able to evaluate the contractor’s continued eligibility to participate in the NISP, ensure the protection of classified information, and maintain current records.
Special Circumstances
There are no circumstances that require the collection to be conducted in a manner inconsistent with 5 CFR 1320.5(d)(2).
Agency 60 Day Federal Register Notice and Consultations Outside the Agency
A Federal Register Notice appeared on December 12, 2006 (71 FR 74489). No comments were received and a copy of the Federal Register Notice is provided.
There were no other consultations made outside of DSS.
Payments to Respondents
No payments or gifts will be provided to the respondents.
Assurance of Confidentiality
Responses to some of the questions asked during an FCL Survey or Security Review may reveal proprietary, commercial confidential or privacy information. FCL Surveys and Security Review Reports are marked as a minimum “For Official Use Only (FOUO)”. Contractors also have reporting requirements under the NISP. When contractor reports are classified or offered in confidence and so marked by the contractor, the information will be reviewed to determine whether it may be withheld from public disclosure under applicable exemptions of the Freedom of Information Act. Only authorized personnel are granted access to Survey and Security Review Data stored in DSS Contractor Facility Files and /or databases. Where privacy information is utilized to retrieve data (i.e., name and Social Security Number), System Notices are in place. Security controls may include the use of encryption and/or passwords, firewalls, Public Key Infrastructure for electronic mail (e-mail) and storage in safes, as appropriate. Disposal of the data is through burning or shredding in accordance with procedures established for the handling of FOUO and Privacy Act information.
Sensitive Questions
No Sensitive questions.
Estimates of Hour Response Burden and Annual Cost to the Respondent
(a) Respondent Burden:
Number of Respondents: 12,111
Possessors of classified: 4,781
b. Non-Possessors of classified: 7,330
(iii) Hours Per Response:
Non-Possessors of classified: 2
(iv) Annual Burden Hours: 39,999 hours = (5.3 hours x 4,781 respondents) +
(2 hours x 7,330 respondents)
(i) Responses Per Respondent: 1
(ii) Number of Respondents: 1,761
(iii) Hours Per Response: 2 hours
(iv) Annual Burden: 3,522 hours = (2 hours x 1,761 respondents)
(3) Total Annual Burden Hours: 43,521 hours = 39,999 hours + 3,522 hours
Facility Security Clearance Surveys: 3,522 hours
(4) Total Number of Responses: 13,872 = (1 response x 12,111 security review respondents) + (1 response x 1,761 FCL survey respondents)
Respondent Cost
(1) Annual Cost to Respondent:
Facility Survey: $78.28 = ($52.88 x .25 hours) + ($38.04 x 1.5 hours) + ($31.99 x .25 hours)
(ii) Security Review:
Possessing: $207.44 = ($52.88 x .6625 hours) + ($38.04 x 3.975 hours) + ($31.99 + .6625 hours)
Non-Possessing: $78.28 = ($52.88 x .25 hours) + ($38.04 x 1.5 hours) + ($31.99 x .25 hours)
Total Annual Cost to Respondents: $1,703,414.12 = $137,851.08 + $991,770.64 + $573,792.40
(i) Facility Survey: $137,851.08 = $78.28 x 1,761 respondents
(ii) Security Review
a. Possessing: $991,770.64 = $207.44 x 4,781 respondents
b. Non-Possessing: $573,792.40 = $78.28 x 7,330 respondents
Explanation of Respondent Cost:
(i) Cost to respondent is based on the approximate salary of a Key Management Official/GS 15 Step 1, Facility Security Officer (FSO)/GS 13 Step 1 and Employee/GS 12 Step 1 (January 2007 salary for Washington DC Metropolitan Area):
a. KMP Salary rate: $52.88 an hour x 12.5% of the review or survey assessment time.
b. FSO Salary Rate: $38.04 an hour x 75 % of the review or survey assessment time.
c. Employee Salary Rate: $31.99 an hour x 12.5% of the survey assessment time.
(ii) FCL Survey Time: KMP: 2 hours x 12.5% = .25 hours; FSO: 2 hours x 75% = 1.5 hours and Employee: 2 hours x 12.5% = .25 hours
(iii) Security Review Time:
Possessing: KMP: 5.3 hours x 12.5% = .6625 hours; FSO: 5.3 hours x 75% = 3.975 hours and Employee: 5.3 hours x 12.5% = .6625 hours
Non-Possessing: KMP: 2 hours x 12.5% = .25 hours; FSO: 2 hours x 75% = 1.5 hours and Employee: 2 hours x 12.5% = .25 hours
Number of Security Review Respondents:
Possessing: 4,781
Non-Possessing: 7,330
(v) Number of Survey Respondents: 1,761
Estimates for Cost Burden:
As noted in Item 3. above, DSS established ISFD to handle all of its Industrial Security Information processing needs and is responsible for managing JPAS, to which contractors have been given limited access. In order to ensure connectivity to the new systems there may be initial start up costs for the contractors pertaining to the need to upgrade their hardware and/or software. Potential costs to the contract should be offset by efficiencies gained through the elimination of paper reports and the ability to request and receive facility and personnel security clearance information electronically.
Total Capital/ Startup Cost To Respondent:
(1) Security Review: $1,332,210.00 = $110 per Software License x 12,111 Respondents
(2) FCL Survey: $193,710.00 = $110 per Software License x 1,761 respondents
(3) Total Annualized Cost = $1,525,920.00
Estimates of Annual Cost to Government:
Facility Survey Operations and Maintenance Costs
Printing/Recording: $28,136.00 = $440.25 + $18,490.50 + $9,245.25
i. FCL Guide: $440.25 = 1,761 respondents (5 pages x $.05)
ii. NISPOM Paper Copy: $18,490.50 = 1,761 respondents (210 pages x $.05)
iii. NISPOM CD ROM: $9,245.25 = 1,761 respondents x $5.25 per CD copy
Postage for Contractor Notification Letter/NISPOM CD: $2,747.16 = ($.39 x 4) x 1,761 respondents
Supplies:
Paper: $2,904.65 = $37.5 x 77.484 boxes
[(1,761 x 220 pages)/500 pages per ream = 774.84 reams/10 ream per box = 77.484 boxes]
ii. NISPOM CD ROM: $5.25 = 210 pages x $.025 [cost to reproduce]
(4) Transportation/Fuel: $28,176.00 = $16 x 1,761 [FCL Surveys conducted]
(5) Communications/Information Technology: $33,459 = $19.00 x 1,761 [FCL Surveys conducted]
(6) Utilities/Space: $30,377.25 = $17.25 x 1,761 [FCL Surveys conducted]
FCL Survey Data Collection: $101,248.695 = [($38.04 x .25 hours) + ($31.99 x 1.5 hours)] (1,761 respondents)
Total Estimated Cost: $227,048.76 = $28,136.00 [Printing/Recording] + $2,747.16 [Postage] + $2,904.65 [Supplies] + $28,176.00 [Transportation/Fuel] + $33,459.00 [Communications/IT] + $30,377.25 [Utilities/Space] + $101,248.695 [ FCL Surveys conducted]
(b) Security Review Operations and Maintenance Costs:
(1) Postage: Contractor Notification Letter: $4,723.29 = $.39 x 12,111
(2) Supplies: Paper: $227,081.25 = (12,111 x 5 pages)/500 pages per ream = 60,555.00 reams/10 reams per box = 6055.5 boxes x $37.5 per box
(3) Transportation/Fuel: $193,776.00 = $16.00 x 12,111 [Security Reviews conducted]
(4) Communications/Information Technology: $230,109.00 = $19.00 x 12,111 [Security Reviews conducted]
(5) Utilities/Space: $208,914.75 = $17.25 x 12,111 [Security Reviews conducted]
(6) Security Review Data Collection
i. Possessing: $848,914.36 = [($38.04 x 1.325 hours) + ($31.99 x 3.975 hours)] (4,781 respondents)
ii. Non-Possessing: $433,203.00 = [($38.04 x .25 hours) + ($31.99 x 1.5 hours)] (7,330 respondents)
(7) Total Estimated Cost: $2,146,921.65 = $4,723.29 [Postage] + $227,081.25 [Supplies] + $193,776.00 [Transportation/Fuel] + $230,109.00 [Communication/IT] + $208,914.75 [Utilities/Space] + $848,914.36 [Security Review/Possessing] + $433,203.00 [Security Review/Non-Possessing]
(d) Explanation of Cost to the Government:
(1) Survey and Security Review costs are based on the approximate salary of GS 13 Step 1 (CI Specialist/ISSP/Supervisor) and GS 12 Step1 IS Rep (Effective January 2007):
i. GS 13 Step 1 Salary Rate: ($38.04 an hour) x (25% of the review or survey assessment time)
ii. GS 12 Step 1 Salary Rate: ($31.99 an hour) x (75% of the review or survey assessment time)
(2) FCL Survey Time:
GS 13 Step 1: (2 hours) x (25% of the review) = .5 hours
GS 12 Step 1: (2 hours) x (75% of the review) =1.5 hours
(3) Security Review Time:
Possessing:
a. GS 13 Step 1: (5.3 hours) x 25% = 1.325 hours
b. GS 12 Step 1: (5.3 hours) x 75%= 3.975 hours
Non-Possessing:
a. GS 13 Step 1: (2 hours) x 25% = .25 hours
b. GS 12 Step 1: (2 hours) x 75% = 1.5 hours
Printing/Recording: $.05 per page, $5.25 per NISPOM CD ROM
(5) Postage: $.39
(6) Supplies:
i. Paper: 500 pages per pack/ream, 10 packs/reams per box, average $37.5 per box.
a. NISPOM: 210 pages
b. Notification Letter: 5 pages
c. FCL Survey Guide: 5 pages
(7) Transportation/Fuel:
i. Average Purchase/Maintenance Daily Rate $6 = $15,000.00 per car/ over 7 years [365 days x 7 = 2,555 days]
ii. Average Fuel Costs per Collection: $10 = 5 gallons x $2.00
Program Changes and Adjustments
There is a slight increase in burden hours and cost due to an increase of respondents participating in the NISP.
Publication Plans/Time Schedule
There are no plans to formally publish or tabulate the information collected, although some of the information maybe used for budgeting purposes or to meet information reporting requirements as referenced in Item 2., above.
Approval Not to Display Expiration Date
Approval is not sought for avoiding display of the expiration date for OMB approval of the information collection.
Exceptions to the Certificate Statement
It is believed that DSS is in compliance with the requirements of Item 19, “Certification for Paperwork Reduction Act Submissions”.
Statistical methods are not employed for collection of this information.
File Type | application/msword |
File Title | SUPPORTING STATEMENT |
Author | janice savoy_mccormick |
Last Modified By | pltoppings |
File Modified | 2007-04-30 |
File Created | 2006-12-20 |