Section



[Code of Federal Regulations]
[Title 32, Volume 6]
[Revised as of July 1, 2004]
From the U.S. Government Printing Office via GPO Access
[CITE: 32CFR2001.70]

[Page 493]
 
                        TITLE 32-NATIONAL DEFENSE
 
CHAPTER XX--INFORMATION SECURITY OVERSIGHT OFFICE, NATIONAL ARCHIVES AND 
                         RECORDS ADMINISTRATION
 
PART 2001_CLASSIFIED NATIONAL SECURITY INFORMATION--Table of Contents
 
                Subpart F_Security Education and Training
 
Sec. 2001.70  General [5.4].


    (a) Purpose. This subpart sets standards for agency security 
education and training programs. Implementation of these standards 
should:
    (1) Ensure that all executive branch employees who create, process 
or handle classified information have a satisfactory knowledge and 
understanding about classification, safeguarding, and declassification 
policies and procedures;
    (2) Increase uniformity in the conduct of agency security education 
and training programs; and
    (3) Reduce improper classification, safeguarding and 
declassification practices.
    (b) Applicability. These standards are binding on all executive 
branch departments and agencies that create or handle classified 
information. Pursuant to Executive Order 12829, the NISPOM prescribes 
the security requirements, restrictions, and safeguards applicable to 
industry, including the conduct of contractor security education and 
training. The standards established in the NISPOM should be consistent 
with the standards prescribed in Executive Order 12958, as amended and 
of this part.
    (c) Responsibility. The senior agency official is responsible for 
the agency's security education and training program. The senior agency 
official shall designate agency personnel to assist in carrying out this 
responsibility.
    (d) Approach. Security education and training should be tailored to 
meet the specific needs of the agency's security program, and the 
specific roles employees are expected to play in that program. The 
agency official(s) responsible for the program shall determine the means 
and methods for providing security education and training. Training 
methods may include briefings, interactive videos, dissemination of 
instructional materials, and other media and methods. Agencies shall 
maintain records about the programs it has offered and employee 
participation in them.
    (e) Frequency. The frequency of agency security education and 
training will vary in accordance with the needs of the agency's security 
classification program. Each agency shall provide some form of refresher 
security education and training at least annually.