1 Volume XLIII, Number 1 January/February 2015 NCMS B U L L E T I N THE SOCIETY OF INDUSTRIAL SECURITY PROFESSIONALS SECURITY EXCelleNCE SINCE 1964
2 Page 2 President Leonard Moss, Jr., ISP, CPP Agilex Vice President Debora Young, ISP Honeywell Treasurer Dean Young, ISP Celestica Secretary Dennis Arriaga, ISP SRI International NCMS, Inc. The Society of Industrial Security Professionals NCMS 51 st Board of Directors Aprille Abbott, ISP The MITRE Corp Kat Madden, ISP Raytheon Missile Systems Liz Fant, ISP FSO Consulting & Training Services Sheryl Daniels, ISP Northrop Grumman Aero Systems Catherine Kaohi, ISP C.S.Consulting John Dean, ISP CACI Quinton Wilkes, ISP L-3 Communications Tameka Watts, ISP SAIC NCMS BULLETIN Sheila Garland, ISP Ball Aerospace Larry Mustonen, ISP General Dynamics-AIS Dianne Raynor, ISP The Boeing Co Sharon Tannahill Executive Director-MMCO Inside This Issue President's Message... Page 3 51 st Annual Training Seminar... Page 6 A Tribute to Jim... Page Awards Program... Page 9 Take Heed! Recertification Mistakes or Omissions?... Page 10 NCMS History-Highlights from Page 12 Newest ISP s... Page 12 NCMS Thanks its Associate Members.. Page 13 Member Anniversaries... Page Individual Membership Contest Winners... Page 15 Internal Vulnerability Assessments - A Best Practice... Page 18 On the Cover Snooper Bowl - A classic security awareness poster one of hundreds coming soon to the NCMS Resource Library! If you would like an article considered for inclusion in the March/April Issue of the NCMS Bulletin, please the article to: no later than March 5. FIND US ON: NCMSInc /about https://www.facebook.com/ncmsinc EDITORIAL STAFF: Editor-In-Chief: Alison Cramer Co-Editors & Production: Sue Morris, SharonTannahill Communications Committee Chair: Dennis Arriaga Copyright 2015 NCMS, Inc. the Society of Industrial Security Professionals https://twitter.com/ncmsnational https://www.youtube.com/channel/ UCqKDH4QdAYzlSMJATaMiboQ
3 NCMS BULLETIN Page 3 PRESIDENT'S MESSAGE by Leonard Moss, Jr., ISP, CPP, Capital Region Chapter who are committed to the continued success of NCMS. One of the best barometers of our progress and success is our growth as we ended the year with nearly 7,000 members, an all-time high. With your help we can and we will surpass that in 2015! (Photo of the NCMS President, Leonard Moss, presenting the late Dr. James Jim Hickok the 2014 NCMS Presidential Award at the 50 TH Annual NCMS Seminar President s dinner.) Happy New Year, NCMS! It s hard to believe that 2015 is already here. After such a momentous year in 2014, we have our work cut out for us to surpass the extraordinary achievements of our 50 th anniversary, but we are poised to do just that and are already off to a great start. Once again I hope that you all had a great holiday season and enjoyed time with your loved ones. As we begin 2015, we are already halfway through the NCMS year, which runs from June 2014 to June 2015, concluding with our annual seminar. It has been another busy year for the board and the chapter officers, and a lot of progress has been made, but there is still so much more to do to reach our goals by June. However, I am confident that our exceptional leadership team will once again exceed expectations. As is customary for me, I like to start the year off by conveying appreciation to our incredible Board of Directors, Chapter Chair Liaison, Chapter Chairs & Officers, all of our committee chairs & committee members, and last, but certainly not least, our management company, MMCO. As I shared in my 2014 year-end message, we had another record-breaking year due to the efforts of our devoted leaders and members I again thank and honor the chapter chairs, officers and committee members who served NCMS in 2014, including those who may have completed their term and are now moving on to their next challenge, as well as those who were re-elected. If you have completed a term on the local level and are now looking for a new challenge, I encourage you to consider running for the NCMS Board of Directors. Having served at both the chapter and national levels, I can attest that each are gratifying and provide opportunities to make longlasting and meaningful contributions to the national security landscape. The board and chapter chairs gathered at the Bellagio Hotel in Las Vegas, NV, January 2015, to conduct our joint meeting to kick off 2015 and prepare for the upcoming Annual Training Seminar that will be held at the same location in June. As you may recall, each year the board and the chapter chairs conduct a joint meeting to assess the annual seminar site and focus on executing the second half of the Society year as superbly as we did the first two quarters. As usual, both the board and the chairs had aggressive agendas and, as expected, they got it done. For those interested in all the details of the meeting, the minutes are always posted on the national website in the resource library. One of my most important duties as president is to help the team stay focused on our goals to ensure that we are on track to achieve -- or better yet -- exceed them. I am pleased to report that we are indeed on course to do just that. The board and I attended several other important meetings that occurred during the months of November and December 2014 on your behalf to ensure your voice was represented. Once they are approved and authorized for release, the minutes or notes from these meetings are always provided to the chapter chairs to share with the membership. 1. DSS Stakeholder Meeting was conducted 18 November 2014 at DSS Headquarters in Quantico, VA. It is hosted and chaired by continued on next page...
4 Page 4 President's Message continued... DSS Director, Stan Sims. Attendance at the meeting is by invitation only, and attendees included DSS, ISOO, NISPPAC Industry Reps and NISPPAC MOU Leaders. The NCMS President is invited to this meeting on behalf of our organization. As always, the meeting was productive and provided great opportunities to share updates and address issues prior to the public NISPPAC meeting where the exchange is a bit more structured and restrained. 2. NISPPAC Meeting was conducted 19 November 2014 at the National Archives in Washington, DC. It is hosted and chaired by ISOO Director, John Fitzpatrick. Since we have a lot of new members, I think it s important to explain that NISPPAC is an acronym, which stands for National Industrial Security Program Policy Advisory Committee. For those who may not be aware of this essential group, I encourage you to visit their website and review the many reports posted. NCMS is an MOU member and the President represents our organization in that capacity. These meetings are open to the public. Some of the NCMS Board, including myself, attended on your behalf. The NISPPAC meeting minutes are posted and available publicly along with the meeting schedule. You can find them at: archives.gov/isoo/oversight-groups/nisppac/ committee.html#2011. The minutes from the November meeting have not been posted yet, so check the website periodically for updates. 3. NCMS/DSS Quarterly Leadership Meeting was conducted 5 December 2014 at DSS headquarters in Quantico, VA. It is chaired and hosted by DSS Acting ISFO Director, Mike Halter. This is a collaborative meeting with the NCMS Board and DSS senior leadership where we address timely and pertinent issues facing our community. These issues are collected from chapter chairs who solicit them from members, so that we can take them forward and get answers. Because the answers from DSS could have policy implications, they must be approved first by NCMS BULLETIN their Public Affairs office. Therefore, it generally takes longer to get the official responses back and out to the members. We will send them out to the chairs as soon as we receive them from DSS. 4. DIB SCC/GCC Meeting was conducted 15 December 2015 at ATK in Rosslyn, VA. It is hosted and chaired by General Barry Bates. For those not familiar with the DIB SCC/GCC, it s also an acronym for Defense Industrial Base Sector Coordination Council & Government Coordinating Council. The SCC members are contractors that have been identified by the appropriate government entity as a critical infrastructure. NCMS is a member of the DIB SCC Executive Committee, and I represent our organization at these meetings. Several of our directors and members are also members of the DIB SCC, representing their companies on the DIB. These are just some of the meetings that NCMS attended, and all of our directors are busy with full agendas and meetings that they conduct or attend in support of our organization s strategic plan and goals. As volunteers, we are always in need of more help, so if you wish to get more involved, please consider joining a national committee and sharing your knowledge and skills. Make plans now to join your colleagues June 2015 at the Bellagio Hotel in Las Vegas, NV. Registration is open now at https://www.ncms-seminar.org. The seminar committee is once again planning to deliver another topnotch program that cannot be matched anywhere else. NCMS continues to give me the greatest value for my money, and this is why I am a life-long advocate for this organization. If you have not renewed your membership yet for 2015, do it soon so you won't miss anything -- we have many new initiatives coming this year, including our new learning management system (NCMSU), additional brown bags, a new Insider Threat/CI Committee, a revamped website, and so much more. I m looking forward to seeing at least 2500 of you in June at the national seminar. Farewell to an NCMS Champion, Dr. James Jim Hickok Rest in Peace At the end of December, we lost one of our most beloved members and a true pioneer, Dr. Jim Hickok. I was deeply saddened when I got the news that our dear friend Jim had passed away. Jim has done so much for NCMS, and he is someone I truly admired and valued. When I joined the NCMS Board, Jim was working hard to earn accreditation continued on page 5...
5 NCMS BULLETIN President's Message continued... for our ISP certification program. He had already been a two-term president and had chaired numerous national committees. Having worked with him on the board for several years before I became president, I got the opportunity to observe just how brilliant he was and learn how much he had done for NCMS during his many years of service. It was for this reason that I took great pride in nominating Jim for the 2014 Presidential Award. I was so honored to be able to bestow this welldeserved honor upon Jim last June, which he earned with unanimous approval by the NCMS Board. Jim was recognized at the President s dinner for pioneering the professionalization of our career field by conceiving the ISP certification program & then leading the ISP accreditation initiative; forming the NCMS Mentor program; and achieving a lifetime of leadership and commitment to the security community. Thank you, Jim, for your many contributions. We will miss you dearly and will continue to hold your lovely wife and family in our thoughts and prayers. Rest in peace my friend! Regards, Leonard v Page 5 SECURITY CLEARANCE LAW S feguard your Status When it comes to obtaining and proactively keeping facility and security clearances valid, Armstrong Teasdale is the go-to firm for proven, reliable counsel. Brian E. Kaveney ext FACILITY CLEARANCE ISSUES FOCI MITIGATION SECURITY CLEARANCE HEARINGS SF 86/E-QIP COUNSELING armstrongteasdale.com/security-clearance-law
6 Page 6 51ST ANNUAL TRAINING SEMINAR --- A FOUNTAIN OF SECURITY KNOWLEDGE by Aprille Abbott, ISP, New England Chapter Happy New Year! If you made any New Year s resolutions, I hope you included a goal to obtain more education and training this year. A great way to achieve that resolution is to plan to attend the 51 st NCMS Annual Seminar -- A Fountain of Security Knowledge -- at the Bellagio Hotel in Las Vegas June 23 rd 25 th This event includes three days of targeted educational opportunities in all aspects of Industrial Security. Seminar registration is now open, and our website is updated with all of the current program and registration details. Here is a quick update on some of the seminar committee s activities. Dianne Raynor is the Awards Chair this year and is ready to receive all of your award nominations for some well-deserving individuals. Last year we had some great submissions, and we ve improved the submission forms to make them more user-friendly. We all know someone who is worthy of recognition, so please consider writing up a nomination. Dianne also coordinates with DSS the presentation of the James S. Cogswell Awards. Last year we had approximately 40 recipients, and we are hoping for another banner year in Take a look at our seminar website for further details on each award, the submission process and deadlines. Marketing & Publicity Chair, Sheila Garland, is working to obtain new vendors to fill our hall this year. If you know of a security-related vendor that you think would be of interest to our attendees, please send Sheila the information at She is also working to keep the costs down to attend our seminars by obtaining more corporate sponsorships. NCMS offers corporate sponsors some great new benefits that include advertising and free registration incentives. Please check out the sponsorship (https://www.ncmsseminar.org/sponsor/index.asp) and exhibitor (https:// pages on the website for further details on either program. Catherine Kaohi, Volunteer & Giveaways Chair, will reach out to members and seminar attendees through your chapter chairs. She will be asking for two things: donations of items for the seminar bags and volunteers during the seminar. Our seminar wouldn t be a success NCMS BULLETIN without our many volunteers. So if you are planning to attend and would like to volunteer or donate an item please contact Cathe at She has many volunteer opportunities that will require just a small amount of time but will certainly enhance your seminar experience. As you can see, seminar planning is well underway, and I will provide you updates on some of the other committees (entertainment/tours, Keynotes) in my next article, so stay tuned!!v The ONLY livescan service network comprised of cleared facilities i3 provides the most comprehensive secure fingerprinting solution set for SWFT. i3 offers: High Value, Low Cost secure fingerprint services * Livescan service locations available nationally Card conversion and livescan services Optional submission to SWFT Fingerprint systems for all SWFT needs *services delivered under DSS Option #3 using cleared facilities Please contact i3 for additional information P F Integrity Value Quality
7 NCMS BULLETIN Page 7 A TRIBUTE TO JIM DR. JAMES N. HICKOK, II (ARMY MAJ RET.) by Rhonda Peyton, ISP, Enchantment Chapter You won t find our NCMS members on anyone s family tree, and yet the NCMS membership directory often feels like a family tree because there aren t many who can understand and appreciate life as an industrial security professional, unless you actually are one. The friendships we make and the bonds we form are incomparable to any other profession. And sadly, now we must say goodbye to one of our very own family members, Dr. Jim Hickok. I know I am not the only member of the NCMS family who feels completely devastated by his passing because he encouraged so many of us to believe in ourselves and dream a bigger dream he had a special talent for making you believe the unbelievable. Mostly, I think it was because he liked knowing he could make a difference, and he enjoyed the challenge. I first met Jim when I joined the Enchantment Chapter in He was a stickler for procedure and believed that meetings should be run according to process. First, the pledge of allegiance, then introduction of officers to include recognizing past officers, followed by membership introductions. It made our meetings go a bit long but tradition was important to Jim. During his tenure as President of NCMS from June 2004 through June 2006, I watched as he led board meetings and the sometimes contentious joint Board and Chapter Chair meetings. As the brand new Enchantment Chapter Chair at the January 2005 meeting in Seattle, I noticed that he had little tolerance for listening to ramblings and he wasn t shy about using the gavel to interrupt someone and ask, What is your point? if you strayed too far from the subject you raised your hand to discuss. And yet you knew he wasn t being rude or curt; he just wanted you to get to the point already because there was much work to do. I feel he truly was waiting for a nugget of brilliance from whomever was speaking because that excited him. He absolutely loved a verbal duet, and I believe he was up to the task every minute he was awake. What many people may not know about Jim is his life away from NCMS. While we know him as Dr. Hickok, father of the ISP, he was also a West Point graduate, class of 1971, and 20-year Army veteran who retired as a Major. Jim served as an infantry officer (Infantry, Airborne, and Ranger) where he served in Korea twice, and subsequently was stationed at Fort Hood, Texas; Fort Carson, Colorado; and twice at West Point as a European History Professor which was his passion. He received his PhD in European History from the University of Wisconsin in 1991, where he wrote a book on Anglo-French military cooperation that was published the same year. Once Jim retired from the Army, he spent his next 16 plus years at the DOE Security and Safety National Training Center (NTC), where he honed his skills as an instructor and began creating professional development and training plans for DOE security professionals. This is where he also learned how hard it was to gain accreditation for a training program. He not only managed to get the DOE NTC security training accredited, but he also facilitated the accreditation of the Federal Law Enforcement Training Academy. While Jim and Barbara, the love of his life for more than 40 years, were kept busy raising three boys, he always seemed to have time to volunteer. Early on, it was the cub scouts, boy scouts, and coaching soccer until, according to Jim, his knees gave out. Then he found something into which he could pour all of his spare time and energy -- NCMS. He joined NCMS in 1991, became a Chapter Chair in 1996, and by 2001 he had been elected to the Board of Directors. While he supported several committees during his 10 years on the board, it was the ISP Certification Committee that caught his eye and consumed his time. He made it his mission to create a test that was difficult enough to stand up under ANSI scrutiny in order to achieve accreditation. He
8 Page 8 NCMS BULLETIN A Tribute to Jim continued... wanted to conduct a beta test using members from his home chapter so 12 of us showed up that day. We were all terrified, but excited to be a part of something that Jim had created. While Jim achieved much in his professional life, as an officer and civilian, what he was most proud of was his beautiful wife and their three sons: Neil, an engineer; Jason, a molecular biologist; and Gary, a robotic surgery equipment manager. After a long day of NCMS board discussions, Jim would often entertain us with hysterical stories about learning how to care for his sons as babies, and then stories about when they were older and his inability to understand the logic of three teenage boys. The main theme of each story was that Barbara needed to coach him that yes, babies really do eat that much and yes, their diapers are smelly, and no, teenagers don t always listen to their parents. And even though I would be laughing so hard I d cry, I could still see the twinkle in his eye and knew he was so proud he could burst. He told me that prior to his infantry service and the toll it took on his body, that he used to be tall and handsome. My response was I ll bet you use that line on all the girls. And then I met his sons, who are all tall and handsome, so I told him, Okay, I guess maybe you really were tall and handsome at one point. He just laughed and said, I told you! Many of you who were privileged enough to get to know Jim have similar stories that encompass his ethics, humor, intelligence, and love of the profession. He was an amazing person, consummate leader, and finally, dear friend and mentor to so many of us. He will be greatly missed, but never forgotten. v
9 NCMS BULLETIN Page AWARDS PROGRAM by Dianne Raynor, ISP, Channel Islands Chapter Since the previous article in the November/December Bulletin, how many professionals have you identified who are making significant contributions to our profession? The NCMS Awards program is the perfect way to recognize those who distinguish themselves by making a positive difference in our national security. You can click on the NCMS Awards page (https://www.classmgmt.com/membersonly/award.asp) after signing in as a member, for details and nomination forms. The below descriptions are extracted from the full award criteria. As a reminder, here are the awards. The Woodbridge Award nominations are due to MMCo by January 31, This is our most prestigious award and recognizes the "crème de la crème;" the very best our profession has to offer. The Lonnie Buckels Presidential Award is named in honor of the late Past President Lonnie Buckels and exemplifies the very best our Society has to offer. This recipient must be exemplary in Society business for a minimum of five years. The NCMS President announces this award during the President s Dinner. The NCMS Society Award is presented to those who have made significant contributions that have materially and beneficially affected the Society s growth or performance (i.e., increased membership, developed relevant material to the Society, etc.). Recipients must be NCMS members in good standing. If you are not sure which award criteria is the most appropriate, contact me at com and I ll try to assist. If we still aren t sure, the Awards Committee can review and determine the best option. It is important that you do not inform the possible recipient in the event the Awards Committee and Board of Directors do not approve the nomination. While the Board does everything it can to approve a qualified recipient, there are times when that just doesn t happen. BUT, it starts with you! We would love to acknowledge many recipients, but we can t unless we receive your nominations. All nominees must portray positive ethical standards and reflect the very best of our profession. Award deadlines: Woodbridge nominations must be received by MMCo January 31, 2015 EST. All others are due to MMCo March 1, 2015 EST. There are so many deserving members who just need nominating! Take a few minutes to nominate those exceptional professionals that you all know. They deserve our recognition! v Mentoring Pins Awarded (for the Mentoring Program or the ISP EPP) The following members were awarded a Mentoring Program Award Pin Pamela Hamilton, Palmetto Chapter Cheryl Wheeler, Palmetto Chapter The NCMS Industrial Security Award is presented to those individuals or organizations that have materially and beneficially affected the security community (i.e., functional areas include education, training, operations, or like activities which improves or enhances individual, organizational or corporate performance). The James N. Hickok Industrial Security Professional (ISP ) Award is given to an individual who has made extraordinary and unique contributions to NCMS Industrial Security Professional Certification Program. Recipients must be members in good standing and current ISP s.
10 Page 10 NCMS BULLETIN TAKE HEED! RECERTIFICATION MISTAKES OR OMISSIONS? EASILY AVOIDABLE IN YOUR RECERTIFICATION PACKAGE by Jim Massaro, ISP Recertification Subcommittee We have all been there, collecting our recertification documentation to ensure we have 60 Continuing Educational Units (CEUs). It means collecting training descriptions/synopses, agendas, attendance certificates and wondering if each requested CEU is really industrial security (IS) related--not to mention wondering when exactly do I need to send in my package? Wow! And, finally when we submit that complete package, we assume we have just unburdened ourselves of the albatross around our neck, but wait...the package is coming back for some very easily avoidable mistakes or omissions! It makes sense that the more up-front preparation and research we can do in the process, the easier the process will be; there is less chance of having to provide additional clarification to NCMS Headquarters or last minute scrambling to make corrections or submit additional information. It is not every day we submit our recertification package it is only required once every three years, but it is tough to remember all of the things we have accomplished since the last submission. The good news is a new online submission repository is now available and will help immensely in collecting and maintaining data, and it will even help us to make fewer mistakes! It may not solve all our problems, but it will remind us of the information we need to send in for credit verification. We ve all worked hard to pass the ISP certification exam, and we don t want that effort to be wasted by letting our recertification deadline pass without taking the appropriate action. Consider for a moment why we achieved the certification in the first place, personal pride being first and foremost because each of us wants to do the best job humanly possible. There are secondary reasons such as the fact that employers are now recognizing the importance of the certification because it gives our companies an edge over the competition in the job market and may also result in continued on next page.. Established 1962 Over 25 years experience in Design Build Construction of SCIF, SAPF and High Security facilities throughout the United States. damo Construction provides the following services and more: Turn-key design and construction of your SCIF or SAPF Project Guaranteed accreditation on any SCIF or SAPF Project we design and build Free Site Survey Conceptual Estimating Architectural Design and Engineering Project Construction Accreditation Documentation Hourly Consulting Construction Management Design, Fabrication & Installation of Modular and Mobile SCIF and SAPF s (800) Please visit our web site to see project profile as well as our What is a SCIF? and SCIF Construction Glossary Terms pages
11 NCMS BULLETIN Take Heed! continued... a personal salary increase or bonus for the ISP. In addition, recertification is not really difficult to do, especially now with the online recertification in place and the numerous ways to attain CEUs. Since the electronic submission process is now live, the hardcopy package is no longer available effective 31 Dec As mentioned earlier, the chance for making a mistake has been substantially reduced. However, omissions are just as easy to do when completing the submission electronically. With a little double checking and diligence, recertification should be relatively easy. Common omissions and mistakes include: 1. Forgetting to submit agendas with our certificates of completion. An agenda is always required so NCMS can verify the number of CEUs claimed. 2. Submitting a certificate of attendance that states the CEU value is greater than the calculated values. This is why an agenda is always required, as NCMS must verify the number of CEUs claimed. 3. Incomplete and missing data - Attendance records should have name, topic, date, and number of CEUs awarded. Chapters are encouraged to use a business card format attendance record or an attendance template of their own to record attendance at chapter training for one or two hour training/presentation sessions., although a full page attendance record/listing can be used at the chapter s discretion. Full page attendance certificates may be used for special events, workshops, seminars etc. Each individual should receive an attendance record to use towards recertification and as support material for Vulnerability Assessments. 4. Including time that does not count for a CEU award. Examples are including the time spent taking a test for the associated course (i.e. - CDSE courses), lunch and breaks, visiting exhibits, etc. CEUs are only awarded for class time and online training that incorporates the training element. Page Counting CEUs that are not industrial security, industrial security management, or information security-related. This is a common problem with an ISP submitting college courses for credit that are related to business or general management. This also includes seminars, conferences, etc. that are not related to industrial security. Of note, industrial security is the status reached when the appropriate measures and procedures are implemented to gain access to, handle or generate classified information during the performance of a classified contract or program. 6. Not submitting enough CEUs. While an attendance certificate may say 6 CEUs, NCMS has to verify it independently because units are calculated differently across different organizations. Consequently, NCMS often awards fewer CEUs than claimed because breaks, lunches, exhibit time etc., have been counted. NCMS advises to ALWAYS submit more CEUs than needed because it is very likely that some of them will not be counted or will earn less than face value. 7. Recertification submission is too close to the expiration date, which may cause a last minute scramble for both the candidate and NCMS. The recertification date cannot change, and the worst case is that the ISP certification will lapse. Candidates cannot continue to earn CEU credit to include in the current recertification period after their recertification date. Candidates must recertify by the last day of the month in which he/she originally became certified (or last recertified). The recertification package can be submitted as early as six months prior to the recertification deadline. Ensuring your information is correct and complete in light of the above will ensure you have completed all the requirements and are well on your way to recertification. Remember -- it is your responsibility to have all the information submitted within six months of your original certification /recertification month. So get started now with your online application by posting your attendance certificates, agendas, and course descriptions to your online recertification document repository. GOOD LUCK! v
12 Page 12 NCMS HISTORY -- HIGHLIGHTS FROM 2014 by Dean Young, ISP, Lone Star Chapter Happy 2015, Everyone! 2014 was a milestone year for NCMS and one to remember. Here are some highlights of 2014 and the NCMS 50 th Anniversary. At the beginning of the year, the National Board was hard at work planning for the 50 th Anniversary Year, the Annual Training Seminar in Washington D.C., and the 10 th Anniversary of the NCMS ISP Program The Society continued to grow throughout the year. Important topics in 2014 included Insider Threat future requirements, ISP Program Improvements and changes to fees, and the phenomenal growth of the National Brown Bag Training Program. Many of the past NCMS Presidents submitted articles for the May/ June Bulletin about their experiences during their time as President of NCMS. A complete history of NCMS was published in the same edition that outlined the rich and wonderful history of the Society. The 2014 NCMS Annual Training Seminar was a huge success! A special 50 th anniversary Bulletin was published, and President Obama recognized the Society s 50 th Anniversary. A total of 13 past NCMS presidents attended the seminar. Some keynote speakers included Vice Admiral (ADM Select) Michelle Howard, USN Deputy CNO; The Dice Man, Ray Semko; ISOO Director, John Fitzpatrick; DSS Director, Stan Sims; Thomas Mauriello from ForensIQ, Inc.; and John Felch and Leslie Martell from the FBI. The James S. Cogswell Awards were awarded to 40 deserving companies. The Seminar hosted 35 outstanding workshops with nearly 1600 attendees, over 500 of whom were first timers. The National Board revised and completed many of its goals and objectives set during the previous year. A new membership award was created to recognize NCMS members who recruit the most new members, and the Communications Committee was tasked with revising the current NCMS Website to make it more relevant and user-friendly (stay tuned!). The Lonnie R. Buckels Presidential Award was awarded to Dr. James N. Hickok. The 2014 James N. Hickok Industrial Security Professional (ISP ) Award recipients included NCMS BULLETIN James Bailey, ISP ; James Massaro, ISP ; Cynthia Moiani, ISP ; and Patricia Robbins, ISP. The 2014 Society and Industrial Security Award Winners included Diane Gallatin, ISP, and Roxana Perry, ISP. Industrial Security Award Winners included the DSS San Antonio Field Office, Diane Walton, ISP, Lance Simmons, Chris Gruenwald, & Steven Akers, and DSS/ CDSE received the prestigious Donald B. Woodbridge Award. By Fall 2014, the Board and Seminar Committee was already working hard on the 51 st NCMS Annual Training Seminar at the Bellagio in Las Vegas. The Society recognized six new chapters during the year as membership continued to grow. Member anniversary dates were added to the NCMS Bulletin. The ISP Examination Application and Recertification Forms moved to an online format. New changes in the NCMS Mentoring Program were underway and Cogswell, the NCMS-sponsored Vet Dog, is doing great in his training. Already, 2015 is shaping up to be another great year for NCMS and its members. New and innovative ways to provide education and training are constantly in development, including the launch of our NCMSU this month! The National Board is working hard to bring value to your membership and provide the tools you need to excel in our industry. Happy New Year and we will see you in Vegas in June! v Congratulations to our Newest ISP s Karen Atkins Mindy Boomer Raymond Elloso Kelley Mullenniex Stephen Poe Sammy Robledo Brenda Smith James Ulery Total active ISPs: 441 Total recertifications since last Bulletin: 13
13 NCMS BULLETIN Page 13 NCMS THANKS ITS ASSOCIATE MEMBER COMPANIES FOR THEIR SUPPORT
14 Page 14 NCMS RECOGNIZES MEMBER ANNIVERSARIES NCMS recognizes milestone anniversaries of our members in November, December, January, and February: Fifty Years December James Bagley, Quantico Chapter January Frederick Daigle, FL Sun Coast Chapter Thirty Years November Carol Donner, Channel Islands Chapter Janet Montgomery, Capital Region Chapter December Carol Agrella, New England Chapter Richard Black, WDC Chapter Paulette Hamblin, ISP, Mid-South Chapter Jackie Rudolph, Mid-South Chapter January Cheryl Pelton, ISP, Channel Islands Chapter February Sharon Matsuura, ISP, Intermountain Chapter Twenty-Five Years December Patti Adams, San Diego Chapter Joseph Cotton, Intermountain Chapter January Leslie Long, Emerald Coast Chapter P. Steve Wheeler, Dallas/Fort Worth Chapter February Linda Johnson, ISP, Southern CA Chapter Dianne Raynor, ISP, Channel Islands Chapter Lisa Sabre, ISP, Northern Lights Chapter Twenty Years November Marie Pedersen, Northern Lights Chapter Ten Years November David Clements, Channel Islands Chapter Amelia Cubbage-Lain, Chesapeake Bay Chapter Deborah Davis, San Diego Chapter Thomas Elliott, Channel Islands Chapter Brenda Holubec, Alamo Chapter Tiffany Roebuck, Chesapeake Bay Chapter December George Bower, Dallas/Fort Worth Chapter Yvonne Davis, NW Region Chapter Les Dishman, ISP, Southern CA Chapter Arthur Gerringer, Alamo Chapter Thomas Giblin, Mile High Chapter Thomas Holt, Lone Star Chapter Debra Holtzclaw, ISP, Chesapeake Bay Chapter Edward Mejias, FL Sun Coast Chapter Thomas Meyer, Alamo Chapter Sherri Money, Emerald Coast Chapter Jeannie Nunez, Emerald Coast Chapter Christine Peterson, ISP, Carolina Chapter Jeffrey Predmore, ISP, Mid-Atlantic Chapter C. Richard Worrell, Mid-Atlantic Chapter January Joshua Blackwell, ISP, Mid-South Chapter Ann Bost, Carolina Chapter Geraldine Cole, Pacific NW Chapter Shawn Duncan, Intermountain Chapter Neil Fox, ISP, Lone Star Chapter Carla Freeman, ISP, Carolina Chapter Roadie Humphrey, ISP, Mid-South Chapter Elizabeth Koballa, Chesapeake Bay Chapter Margaret McCarson, Hampton Roads Chapter Stanley Parker, Carolina Chapter Russell Peay, Intermountain Chapter Loretta Rodriguez, Enchantment Chapter Sandi Sams, Mile High Chapter Tonya Still, Pacific NW Chapter February Linda Akens, Channel Islands Chapter Danyelle Clark, WDC Chapter Ed Fitzgerald, Lone Star Chapter Robert Squatrito, Southern NE Chapter Michael Stoutenburg, Northern Lights Chapter Candy Williams, Northwestern Region Chapter Sherman Wilson, Mid-South Chapter Frances Wolff, Mid-South Chapter NCMS BULLETIN Five Years November James Acker, Mile High Chapter Randall Agee, Alamo Chapter Nicole Allen, Capital Region Chapter Mary Battaglia, Capital Region Chapter Carol Beaulieu, New England Chapter Todd Bentley, Mid-South Chapter Shelly Bevins, FL Sun Coast Chapter continued on page 16...
15 NCMS BULLETIN Security Clearance Denied/Revoked? Don t let security clearance issues jeopardize your employment or career INDIVIDUAL MEMBERSHIP CONTEST WINNERS by Debbie Young, ISP, Valley of the Sun Chapter Page 15 I am keenly aware of the importance of a security clearance for both a military career and government and civilian contractor jobs. My goal with all of my security clearance clients is to put the clearance issue to rest at the lowest possible level. I handle cases throughout the United States and, if needed, will fly to your location to represent you at your hearing. NAMED ALABAMA SUPER LAWYER 2008, 2009, 2013, & SUPERB RATING FROM AVVO.COM AV PREEMINENT RATING BY MARTINDALE-HUBBELL NCMS MEMBER As a former U.S. Army Judge Advocate, attorney Ron Sykstus has been successfully handling security clearance cases for many years, covering all areas of government concern including: Financial Considerations Security Violations Drug Involvement Alcohol Consumption Personal Conduct Criminal Conduct Sexual Behavior Foreign Influence Foreign Preference Misuse of Information Technology To learn more about Ron Sykstus, his experience and the services he can provide to protect your security clearance please visit SecurityClearance DefenseLawyer.com Congratulations to the following members for being a top recruiter in the 2014 Membership Contest. Each member will receive a free 2015 NCMS Membership. James Behr Chesapeake Bay Juan Castro Capital Region Diane Griffin Chesapeake Bay Gay Johnson Valley of the Sun Kevin Miller Capital Region LoriLynn Monroe Valley of the Sun Eric Schiowitz New England Donald Voss Enchantment Dennis West Mile High Protect. Store. Transport. New Hard Drive Organizers are lined with anti-static foam, and provide added security and convenience. Custom fit your sensitive electronic devices. Contact Ron Sykstus NOW! Personal Direct Office Phone ATTORNEYS AT LAW 225 PRATT AVENUE HUNTSVILLE, ALABAMA Alabama Bar rules require the following: No representation is made that the quality of legal services to be performed is greater than the quality of legal services performed by other lawyers. GSA Approved (SAFE) AlphaSafeInc.com Woman- Owned Small Business _BOND&BOTES3.5x10ad02wt.indd 1 11/25/14 4:11 PM
16 Page 16 NCMS Recognizes Member Anniversaries continued... Detra Bodrick, Capital Region Chapter Teresa Bowden, Middle TN Chapter Gail Brown, Capital Region Chapter Christine Caraballo, NW Region Chapter Curtis Chappell, ISP, WDC Chapter Matt Crouse, Hoosier Heartland Chapter Michelle Dade, Mark Twain Chapter Julio Del Castillo, FL Space Coast Chapter Thomas Dobrowolski, Greater Chicago Chapter Jean Dunn, New England Chapter Patricia Faciane, Magnolia Chapter Neil Green, ISP, Chesapeake Bay Chapter David Haller, Hoosier Heartland Chapter Shad Hancock, Intermountain Chapter Jim Hardy, Dallas/Fort Worth Chapter Michael Hensley, ISP, Capital Region Chapter Michael Hinds, New England Chapter Bridget Johnson, Hampton Roads Chapter Jeffrey Kirby, Hampton Roads Chapter Tracy Lundien, Chesapeake Bay Chapter Sally Marinelli, Southern NE Chapter Chris Mason, Wright Flyer Chapter Cathy Mendlin, Southern CA Chapter Paula Orendorf, New England Chapter William Patterson, Intermountain Chapter Roxana Perry, ISP, Carolina Chapter Ronald Reed, Capital Region Chapter Shayla Savoy, Capital Region Chapter Richard Sella, ISP, WDC Chapter Cindylou Shaffer, FL Sun Coast Chapter Michael Steinbuch, Mid-Atlantic Chapter Mahshid Tavakoli, Hampton Roads Chapter Barbara Umprovitch, Enchantment Chapter Lynnette Wiggins, FL Space Coast Chapter Paul Wonder, Silver and Gold Chapter Danielle Wright, Intermountain Chapter December Charles Allen, Dallas/Fort Worth Chapter Christopher Brouady, New England Chapter Christopher Brown, Southern CA Chapter Erica Burnam, WDC Chapter John Dalton, Carolina Chapter Jannette Cawlfield, Pikes Peak Chapter Donzleigh Dowie, Central FL Chapter Heather Dunn, Dallas/Fort Worth Chapter Suzanne Gregory, Capital Region Chapter John Heath, Mid-South Chapter Robert Holt, ISP, Middle TN Chapter Corbin Hughes, Dallas/Fort Worth Chapter Ralph Hutchins, ISP, Central VA Chapter Manoj Kalath, Capital Region Chapter NCMS BULLETIN Ed Kinsey, ISP, Chesapeake Bay Chapter Gloria Krauklis, Hampton Roads Chapter Andy Lewis, ISP, Sonoran Chapter David Markowski, New England Chapter Nicole McGuire, Mark Twain Chapter Christina McKenen, Capital Region Chapter Teresa Moran, Greater St. Louis Chapter Kelley Mullenniex, ISP, Hampton Roads Chapter Robert Neumann, Carolina Chapter Nancy O Neil, New England Chapter Josie Pearson, Hampton Roads Chapter Aaron Phillips, Intermountain Chapter Karin Reynolds, Capital Region Chapter Sandy Richardson, Sky Islands Chapter Beth Thurman, ISP, Dallas/Fort Worth Chapter Paul Tibbetts, Dallas/Fort Worth Chapter Michael Vargo, WDC Chapter Terry Williams, Hampton Roads Chapter Karen Yax, Midwest Chapter January Heidi Akers, FL Sun Coast Chapter Shonda Bedingfield, Mid-South Chapter Georanna Biroonak, Capital Region Chapter Kyle Blankenheim, Chesapeake Bay Chapter David Bonnett, Capital Region Chapter Pat Brooks, Dallas/Fort Worth Chapter Glenda Brooks, WDC Chapter Voncille Buchanan, Greater Chicago Chapter Stephen Campbell, Quantico Chapter Karen Chergoski, Channel Islands Chapter Nancy Cohen, Southern NE Chapter Phyllis Cowans, ISP, Mid-South Chapter Glynn Davis, ISP, Silver and Gold Chapter Matthew Evans, ISP, WDC Chapter Trisha Evans, Mark Twain Chapter Brandi Faunce, Capital Region Chapter Jessica Fuller, Carolina Chapter Edith Gomez Mate, ISP, Sonoran Chapter Lisa Gutierrez, Midwest Chapter Tracy Hays, ISP, Capital Region Chapter Marissa Hock, WDC Chapter Elaine Holliday, WDC Chapter Ellen Holliday, Mid-South Chapter Ann-Marie Howdeshell, Hampton Roads Chapter Corey Johnson, Intermountain Chapter Kory Kelly, Intermountain Chapter Zachary Kosojet, Chesapeake Bay Chapter Michael Kovalsky, Valley of the Sun Chapter Debbra Lawton, Dallas/Fort Worth Chapter Sheri Lewis, Chesapeake Bay Chapter Vina Lloyd, Mile High Chapter Adrian Lundgren, Intermountain Chapter Hei Ly, Silver and Gold Chapter Julie Miller, Middle TN Chapter Amanda Monson, Capital Region Chapter continued on page 17...
17 NCMS BULLETIN NCMS Recognizes Member Anniversaries continued... Luther Moore, Dallas/Fort Worth Chapter Jeff Morrison, New England Chapter Glen Olson, New England Chapter Sherry Pekarna, Northern Lights Chapter Audrey Pineda, ISP, Enchantment Chapter Cheryl Reutemann, WDC Chapter Rae Rollison, ISP, Dallas/Fort Worth Chapter Kevin Rottinghaus, TX Gulfcoast Chapter Dana Sata, Southern CA Chapter Lewis Shryock, Pikes Peak Chapter Toshiba Simpson, Central FL Chapter Jacqueline Smith, Paradise Chapter Steven Snodgrass, ISP, Sonoran Chapter Carla Stone, Greater St. Louis Chapter February Terri Aguilar, ISP, Sonoran Chapter Leonard Burger, ISP, Mid-South Chapter Rodd Briggs, Pikes Peak Chapter Patricia Campbell, Capital Region Chapter Tito Cordero, Dallas/Fort Worth Chapter Terry Culver, Georgia Chapter Sandra Dawkins-Harvey, Quantico Chapter Kelly Dettlinger, Bluegrass Chapter Colleen Mae Foster, San Diego Chapter Page 17 Michael Frank, TX Gulfcoast Chapter Betty Gieseke McGuire, Sky Islands Chapter Ellen Goldberg, Capital Region Chapter Edrie Graham, Palmetto Chapter Antonio Graves, WDC Chapter David Gregory, Mid-South Chapter Jeanine Hadnot, TX Gulfcoast Chapter Toni Haney, Chesapeake Bay Chapter John Hanfere, WDC Chapter Terrence Hardy, Capital Region Chapter Marc Hutcheson, Channel Islands Chapter KC Jones, Southern NE Chapter Sasha Kaohi, Carolina Chapter Debra Keith, Chesapeake Bay Chapter Shauna Knoernschild, Sooner State Chapter Lenora Kochutin, Pacific NW Chapter Michael Kohr, Liberty Chapter Gladys Langford, Mid-South Chapter Stacy Lilly, Hampton Roads Chapter Corey McBride, Intermountain Chapter Kathy Moody, San Diego Chapter Robert Palmer, Wright Flyer Chapter Kemberly Palza, Capital Region Chapter Andy Potter, River Region Chapter Terrie Pung, Mid-South Chapter Charles Randolph, Capital Region Chapter Roger Reed, Mid-South Chapter Sarah Rudman, ISP, Central VA Chapter continued on page NISPOM Compliant Also available on the Cloud
18 Page 18 INTERNAL VULNERABILITY ASSESSMENTS~A BEST PRACTICE by Hunter Opilla, ISP, Sonoran Chapter Committee Members Marcus Carpenter, Capital Region Chapter; Mary Edington, ISP, Capital Region Chapter; Jeanné Woodfin, Enchantment Chapter; Cynthia Sabelhaus, ISP, Sonoran Chapter; John Dean, ISP, Capital Region Chapter; Tracy Enriquez, San Diego Chapter; Dottie Fortwengler, Washington D.C. Chapter; Josie Pearson, Hampton Roads Chapter A successful security team at a cleared facility often finds itself under an enormous amount of pressure from company leadership to achieve and maintain high ratings from their Defense Security Service (DSS) vulnerability assessments (VAs). The question facility security officers (FSOs) for these facilities may often find themselves asking is: Once I achieve Commendable or Superior, how do I maintain it? Maintaining a superior security program year after year in an environment where change is constant and complacency is lurking around every corner is no easy task. FSOs who have gone 18 months or longer without a DSS VA may want to consider the idea of conducting their very own internal VA in order to gauge the current security readiness of their facility. Steps to Conducting a Successful Internal VA 1. Engage Leadership and the Workforce An internal VA requires buy-in from the facility s leadership team. Although the FSO will attempt to conduct the assessment with as little disruption to day-to-day business as possible, leadership support is essential. Once the leaders are on board, employees should be alerted and prepared in the same manner as they would prior to the DSS VA. 2. Assemble the Assessment Team In order to be effective, an internal VA should mirror the DSS assessment as much as possible. One way to ensure a fresh perspective is to invite security professionals outside your facility to participate in your internal VA. Contact FSOs, ISSMs, counterintelligence professionals, and physical security experts from outside your facility. Because of clearance and needto-know considerations, external team members are best selected from other facilities of your business or from your supplier or customer base, where classified information is already shared. Participation on another NCMS BULLETIN facility s internal VA team serves as a great learning and networking opportunity. Whether you use internal or external auditors, your team should be similar in size and composition to the DSS team that usually audits your facility. For smaller facilities, this may consist of simply the FSO, ISSM and one outside SME. For larger facilities, the team can range from 10 to 30 security professionals and SMEs from across the business. Develop an audit schedule and timeline for each day and identify which programs/ product lines/buildings/office spaces will be targeted, as well as what particular VA team member will inspect that area. 3. Create a Checklist The CDSE self-inspection guide is a good starting point to develop the audit strategy and checklists needed to ensure you assess all applicable security processes that DSS will normally review. 4. Keep the DSS Representative Informed and Involved It is also vital to keep your local DSS representatives informed and involved throughout the internal VA process. Invite them to either actively participate or simply observe and advise. 5. Conduct the VA As you conduct the VA, make sure there is a plan in place to document all vulnerabilities, observations, and kudos that the team finds. A good practice is to use a data entry system to document vulnerabilities, assign corrective actions, and track completion of those corrective actions. Have an FSO or corporate security leader from a different facility review all of your DSS enhancement categories and provide feedback on which ones they feel you would receive credit for, and which ones may require more data or examples. 6. After the VA, Communicate the Results and Track Corrective Actions Very soon after the VA is concluded, leadership and employees should be informed of the outcomes. All findings should be recorded in whatever tracking system is used, and corrective actions should be verified by a security professional before the finding is closed. At the conclusion of the internal VA, be sure to submit a detailed report to your local DSS representative on the vulnerabilities, observations, and kudos that the red team discovered. For the vulnerabilities, inform them continued on next page...
19 NCMS BULLETIN Internal Vulnerability Assessments continued... of the corrective actions you have put in place to show that you are actively working to remedy these issues. Showing DSS that your facility is capable of conducting an effective vulnerability assessment on its own may cause them to increase timelines between your actual DSS VAs and also decrease the size of the audit team they send to your facility. No one knows the security issues of the facility like the FSO and his or her security team. Conducting an internal VA allows you to perform a deep dive into known problem areas that DSS may not catch during their audits, while bringing in an outside perspective to identify potential vulnerabilities that the internal team has overlooked. Not only does the internal VA provide an opportunity to identify problem areas and implement corrective actions prior to DSS conducting their assessment of your facility, it also increases security awareness on the parts of leadership and employees. Page 19 NCMS Recognizes Member Anniversaries continued... Carlos Scalisi, Southern CA Chapter Bonnie Shanahan, WDC Chapter Thomas Sly, Sonoran Chapter Mark Sondys, San Diego Chapter Beth Stevens, Pikes Peak Chapter Barb Szabo, Wright Flyer Chapter Sheila Thompson, Enchantment Chapter Tim Thompson, Mid-South Chapter Barbara Ann Vaughan, WDC Chapter Shelly Vogel, Mile High Chapter Thomas Waddell, San Diego Chapter Keith Wagner, Antelope Valley Chapter Trey Williams, Central VA Chapter Holly Wood, Alamo Chapter Donald Wright, Greater St. Louis Chapter v If you have questions, comments, or have a topic you would like addressed, send an to the Best Practices Committee v Also available on the Cloud
20 NCMS, Inc. 994 Old Eagle School Road Suite 1019 Wayne, PA The Industry Leader in Security Information Management Systems NISPOM & JAFAN SELF-INSPECTIONS SIMS recently added extensive support for managing NISPOM and JAFAN self-inspections. Import and export inspection forms using Microsoft Excel or populate the forms directly in SIMS. All checklists are fully customizable and contain context sensitive links to the source document including all applicable ISLs. Create and maintain a superior security program with SIMS Software. SIMS is the easiest to use and most cost-effective security information management system available. SIMS manages classified materials, containers, locks & keys, facilities, contracts, personnel, incidents, clearances and special accesses. Our dedicated team of experts will help your organization create and maintain a superior security program. SIMS fulfills the administrative requirements of the NISPOM as well as SAP/SAR and SCI requirements. P.O. Box Solana Beach, CA (858)