Common use of Operations Security (OPSEC Clause in Contracts

Operations Security (OPSEC. The Contractor shall develop, implement, and maintain an OPSEC program to protect controlled unclassified and classified activities, information, equipment, and material used or developed by the Contractor and any subcontractor during performance of the Contract. The Contractor shall be responsible for the subcontractor implementation of the OPSEC requirements. This program may include IA and Communications Security (COMSEC). The OPSEC program shall be IAW National Security Decision Directive (NSDD) 298 and at a minimum shall include: a. Assignment of responsibility for OPSEC direction and implementation. b. Issuance of procedures and planning guidance for the use of OPSEC techniques to identify vulnerabilities and apply applicable countermeasures. c. Establishment of OPSEC education and awareness training. d. Provisions for management, annual review, and evaluation of OPSEC programs. e. Flow down of OPSEC requirements to subcontractors when applicable. While performing onboard Government sites, the Contractor shall (CDRL A010): a. Comply with facility OPSEC program instructions and contribute to organization-level OPSEC efforts. b. Include OPSEC as part of its ongoing security awareness program and take all required Agency training. c. Be responsive to the Supporting OPSEC Manager on a non-interference basis. d. Protect sensitive unclassified information and activities which could compromise classified information or operations or degrade the planning and execution of operations performed by the Requirements Owner and Contractor in support of the mission.

Operations Security (OPSEC. The Contractor shall develop, implement, and maintain an OPSEC program to protect controlled unclassified and classified activities, information, equipment, and material used or developed by the Contractor and any subcontractor during performance of the Contract. The Contractor shall be responsible for the subcontractor implementation of the OPSEC requirements. This program may include IA Information Assurance and Communications Security (COMSEC). The OPSEC program shall be IAW National Security Decision Directive (NSDD) 298 and at a minimum shall include: a. Assignment of responsibility for OPSEC direction and implementation. b. Issuance of procedures and planning guidance for the use of OPSEC techniques to identify vulnerabilities and apply applicable countermeasures. c. Establishment of OPSEC education and awareness training. d. Provisions for management, annual review, and evaluation of OPSEC programs. e. Flow down of OPSEC requirements to subcontractors when applicable. While performing onboard Government aboard NAVAIR or NAVAIR sites, the Contractor shall (CDRL A010): a. Comply comply with facility OPSEC program instructions and contribute to organization-level OPSEC efforts. b. . Include OPSEC as part of its ongoing security awareness program and take all required Agency training. c. . Be responsive to the Supporting OPSEC Manager on a non-non- interference basis. d. . Protect sensitive unclassified information and activities which could compromise classified information or operations or degrade the planning and execution of operations performed by the Requirements Owner and Contractor in support of the mission. OPSEC CDRLs requirements will be defined on a per TO basis.