Sign up to save your podcasts
Or
Share Contractors can determine CUI and ITAR
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Contractors can determine CUI and ITAR
Send us Fan Mail
https://www.thriveanalysis.com. For consulting
https://www.nispomcentrial.com for books and training
https://www.skool.com/nispomcentral/about for Nispom central community
Due Diligence: Contractors’ Responsibility to Identify and Protect CUI and Sensitive Information
Jeff Bennett of Thrive Analysis Group and NISPOM Central argues that the common claim “contractors are not authorized to determine CUI” is bad advice that leads people to ignore their responsibility to identify, mark, and protect sensitive information in their work products. He says contractors are authorized to apply derivative markings based on government instructions and must exercise “presumption of care” (duty of care) to prevent applied research, controlled technologies, export-controlled information (EAR/ITAR), proprietary data, PII, and CUI from entering the public domain, which can harm warfighters and technology. Citing examples of ITAR data nearly published and CUI text copied into deliverables, he emphasizes repeatable processes, reasonable standards aligned to NISPOM, DD Form 254, DFARS, CMMC, and NIST SP 800-171, plus marking by default and reviewing materials before release.
00:00 Contractors Can Mark CUI
01:05 Stopping the Big Mouth
02:33 Bad Advice in Defense
03:41 Due Diligence Basics
05:55 When Research Turns Sensitive
06:57 Real World CUI Slipups
09:34 No CUI Police Myth
10:41 Presumption of Care
11:21 Derivative Marking Process
12:12 Protect Warfighters and Wrap Up
NISPOM CentralProviding security clearance books, training, and resources for cleared defense contractors.
Clearance, NISPOM, and FSO Consulting
Thrive Analysis Group Inc is your resource for security clearance, NISPOM, and FSO consulting.
NISPOM Store
Our Store
NISPOM Central Community
The skill building community for FSOs who desire to progress in a measured way.
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Support the show
FSO Consulting:
https://thriveanalysis.com
NISPOM Compliance
https://www.nispomcentral.com
We provide facility security clearance, personnel security clearance, FSO consulting and NISPOM consulting.
Personnel Security Clearances
- How to get a clearance
- What to expect once you get a clearance
- What you can do to prepare for a clearance
Facility Security Clearance
✓Become a CDC Contractor
✓Determine security requirements for SECRET, TOP SECRET and SCI Clearances
✓Establish a security team to protect classified information
✓Develop and provide required security training
✓Prepare for government inspections
✓Interpret Contract specifications
✓Fight Insider threat
✓Learn Security clearance levels
✓Process Classified information
✓Prepare Derivative Classification
View all episodes
By jeffrey W. Bennett, ISP, SAPPC, SFPC, ISOC
4.6
77 ratings
Send us Fan Mail
https://www.thriveanalysis.com. For consulting
https://www.nispomcentrial.com for books and training
https://www.skool.com/nispomcentral/about for Nispom central community
Due Diligence: Contractors’ Responsibility to Identify and Protect CUI and Sensitive Information
Jeff Bennett of Thrive Analysis Group and NISPOM Central argues that the common claim “contractors are not authorized to determine CUI” is bad advice that leads people to ignore their responsibility to identify, mark, and protect sensitive information in their work products. He says contractors are authorized to apply derivative markings based on government instructions and must exercise “presumption of care” (duty of care) to prevent applied research, controlled technologies, export-controlled information (EAR/ITAR), proprietary data, PII, and CUI from entering the public domain, which can harm warfighters and technology. Citing examples of ITAR data nearly published and CUI text copied into deliverables, he emphasizes repeatable processes, reasonable standards aligned to NISPOM, DD Form 254, DFARS, CMMC, and NIST SP 800-171, plus marking by default and reviewing materials before release.
00:00 Contractors Can Mark CUI
01:05 Stopping the Big Mouth
02:33 Bad Advice in Defense
03:41 Due Diligence Basics
05:55 When Research Turns Sensitive
06:57 Real World CUI Slipups
09:34 No CUI Police Myth
10:41 Presumption of Care
11:21 Derivative Marking Process
12:12 Protect Warfighters and Wrap Up
NISPOM CentralProviding security clearance books, training, and resources for cleared defense contractors.
Clearance, NISPOM, and FSO Consulting
Thrive Analysis Group Inc is your resource for security clearance, NISPOM, and FSO consulting.
NISPOM Store
Our Store
NISPOM Central Community
The skill building community for FSOs who desire to progress in a measured way.
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Support the show
FSO Consulting:
https://thriveanalysis.com
NISPOM Compliance
https://www.nispomcentral.com
We provide facility security clearance, personnel security clearance, FSO consulting and NISPOM consulting.
Personnel Security Clearances
- How to get a clearance
- What to expect once you get a clearance
- What you can do to prepare for a clearance
Facility Security Clearance
✓Become a CDC Contractor
✓Determine security requirements for SECRET, TOP SECRET and SCI Clearances
✓Establish a security team to protect classified information
✓Develop and provide required security training
✓Prepare for government inspections
✓Interpret Contract specifications
✓Fight Insider threat
✓Learn Security clearance levels
✓Process Classified information
✓Prepare Derivative Classification