Industrial Security Professional (ISP®) Certification Program

George Quin CPP, ISP® DFW Chapter ISP® Certification Committee Chair

NCMS ISP® Examination Preparation Program Mentor

Agenda Why ISP® Certification? NCMS ISP® Certification Program

NCMS ISP® Examination Preparation Program

Q & A Session

Why Certification? Objectively validates an individual’s professional knowledge Demonstrates a high degree of personal confidence, intellectual skill and willingness to develop and excel professionally among peers Enhances individual and organizational creditability when dealing with another organization’s representatives

Professional Certification Equals … More money Enhanced job security Stand out from other job applicants

Peer recognition Personal satisfaction at accomplishment

Industry Security Certifications Some certifications are very broad in scope: - Certified Protection Professional (CPP) Some certifications are very focused:

- Physical Security Professional (PSP) - Certified Fraud Examiner (CFE) - Certified Information Systems Security Professional (CISSP) NCMS “grassroots membership” wanted a certification correlating to work done by FSOs and their staff involving the NISP

ISP® Genesis : Dr. Jim Hickok

Receiving inaugural James N. Hickok Industrial Security Award in 2012 from NCMS President Tony Ingenito

Receiving Lonnie R. Buckels Presidential Award in 2014 from NCMS President Leonard Moss

• 2002 : Briefs NCMS Board of Directors on his plan for developing and implementing a brand new Industrial Security Professional (ISP®) Certification Program directly associated with the NISP • 2004 : ISP® exam debuts at 39th NCMS National Seminar in Reno, NV

Industrial Security Professional Certification Provides baseline for the knowledge required of an industrial FSO with at least five years of experience Certifies individual has requisite knowledge of NISPOM and related directives used by FSOs on a daily basis Demonstrates individual’s willingness to go the extra mile to develop professionally ~ 550 ISPs® are currently certified worldwide

NCMS ISP® Accreditation & Trademarks NCMS ISP® Certification Program was formally accredited by the American National Standards Institute (ANSI) in October 2013 Accreditation process required several years of rigorous documentation by NCMS Board of Directors, headquarters staff and ISP® Committee volunteers The ISP® Logo and Mark are registered trademarks and the property of NCMS. Unauthorized use is prohibited

ISP® Certification: Why FSOs Should Care Having ISP® certified staff members potentially provides DSS Category 3 “Security Staff Professionalism” enhancement points during your facility vulnerability assessment Hosting ISP® certification training at your facility for industry peers potentially provides DSS Category 5 “Active Membership in Security Community” enhancement points during your facility vulnerability assessment

Testimonials from ISPs® “Since I completed the ISP® program, I have noticed a distinct difference in my standing in the community and within my own company ... I am considered a resource for anyone, company wide, that requires assistance. Both my reputation and my salary have benefited from this process.” -- Shona Nietsche, ISP®, Raytheon Company, Aurora, CO.

“I gained confidence in my knowledge of the security field -- when I speak I know what I am saying is correct. I received a Commendable Rating on my DSS inspection this past June -- my DSS rep was very impressed with my accomplishment. My ISP® Certification was one of the many “above and beyond” categories for such a rating.” -- Mia Haynes, ISP ®, Alion Science & Technology, Alexandria VA.

Requirements for ISP® Certification Candidates must have at least five years experience in the security field documented in a resume Candidates must be currently working in security at least part-time (10% of their total hours worked) Candidates must provide a written recommendation from their supervisor (or the NCMS Executive Director) Candidates must arrange for an approved proctor and provide a signed proctor qualification affidavit Candidates must score at least 75% correct on their ISP® exam

ISP® Certification: Experience Requirement

ISP® Certification: Experience Requirement

ISP® Certification: Experience Requirement

Bottom Line : Does your job require knowledge of the NISPOM, JAFAN, and/or COMSEC Manual requirements for the protection of classified information?

ISP® Certification: Candidate Resume Resume must be included with exam application - Critical for reviewers to verify candidate meets 5 year experience requirement

- Recommend functional format with start & end dates since it allows combining industrial security work experience from multiple jobs in one place - Clearly explain work done, especially if position wasn’t a industrial security role for a NISP contractor - Resume doesn’t have to be limited to one page

ISP® Certification: Letter of Reference Letter of reference must be included with exam application - One short paragraph is enough

- Verifies supervisory relationship - Attests candidate meets 5 year security experience requirement & subscribes to high ethical standards - Recommends candidate for certification as an Industrial Security Professional If candidate doesn’t have a supervisor, contact NCMS Executive Director for guidance

ISP® Certification: Proctor Affidavit All ISP® exams are required to be proctored NCMS provides proctors for candidates taking their exam at the annual NCMS National Seminar

Other candidates should contact their Chapter ISP® Committee Chair or NCMS HQ to arrange for a proctor - Proctor cannot present a real or apparent conflict of interest (e.g., co-worker, supervisor or subordinate)

- Anyone who is already an ISP® can be an exam proctor - Non-ISP® proctors must be approved by NCMS HQ

Proctor must sign a written affidavit attesting to their qualifications which must be included in the application

ISP® Program is Managed via Web Sites NCMS web site consolidates all ISP forms, references, and study materials on-line : http://www.ncms-isp.org/ - Certification Booklet - Application Form - ISP Code of Ethics - Test References & Sources

- Frequently Asked Questions - List of Current ISPs - ISP Exam Preparation Program

ISP® exam administered by logon to Prometrics web site

ISP® Certification: Application Process Application must be submitted 30 days prior to desired test date Complete application form and upload all documents at the NCMS web site: (http://www.ncms-isp.org/ISP_Certification/application.asp) - Non-NCMS members must first create a on-line account before accessing an application form - NCMS member application form will be pre-populated with stored membership data. Any changes will also change their member file Complete all sections including payment data and then click “Submit” Partially completed forms can be saved on-line for later submission Candidates will receive a confirmation of receipt and further instructions Contact NCMS HQ at 610-971-4850 if a confirmation is not received

ISP® Examination Date Can take exam 30 days after filing approved application Candidate has one year window to take an ISP® exam after their application is approved

If candidate decides to change their initial exam date: - If inside one year approval window : Candidate must notify NCMS HQ and their proctor of new test date - If outside one year approval window : Candidate must resubmit application and supporting documents - Previously paid fee will be credited towards test

ISP® Examination Format (Web-Based Test) Exam consists of a total of 110 multiple choice questions 100 questions from nine required categories (NISPOM): - Security Administration & Management - Document Security - Classification

- Information Systems Security - Physical Security - International Security

- Security Education

- Personnel Security

- Audits & Self-Assessments

10 questions from two of five elective categories pre-selected by candidate (See references listed on NCMS web site): - Intellectual Property (IP)

- COMSEC/TEMPEST - Counterintelligence (CI)

- Operations Security (OPSEC) - Special Access Programs (SAP)

ISP® Examination Format (Web-Based Test) Prometrics web site makes ISP® exams available 24/7 Candidates have two hours to complete exam This is an “Open Book” test. Security reference materials can brought into exam room and used during test Exam results sheet is immediately posted by Prometrics 75% correct is a passing score

Proctor required to send affidavit to NCMS HQ attesting to proper candidate conduct and results of examination

ISP® Exam Retesting Policy If a candidate doesn’t pass their exam on the first time - Don’t panic or despair (Approximately 25% do fail exam!)

- Must wait six months to take test again - If within one year approval window (and no changes in application or supporting documents) candidates must notify NCMS HQ and submit a retest fee

- If outside the 1-year approval window, candidates must submit a new application to NCMS HQ with the retest fee

Requirements for ISP® Recertification ISP® holders must recertify every three years 60 Continuing Education Units (CEUs) are required All recertification credits adjudicated by NCMS

No more than 50% of the recertification credits may come from Membership/Volunteer Service activities At least 50% of the credits must come from educational programs, instruction, presentations, or publications Same activity may not be counted more than once Documentation to support claimed recertification credits is required Every ISP® has recertification folder on NCMS web site

ISP® Exam & Recertification Fee Schedule

***

*** DFW Chapter Executive Board will reimburse 50% of initial exam cost if a chapter member in good standing with NCMS passes their exam and isn’t reimbursed by their company

Overcoming the ISP® “Fear Factor” Candidates apprehensive about taking exam - “I’m not good enough (or experienced enough).” - “I’ve been out of school a long time. I don’t test well.”

- “I’m just too busy (workload, personal issues, etc.).” - “What if I fail?”: Loss of money & respect of boss/peers Two keys to counter fear are networking and preparation

- Candidate is not alone in this endeavor - Gathering knowledge builds self-confidence - Security is a team effort

ISP® Exam Preparation Approaches Self Study (Use NCMS website posted study materials) ISP® Examination Preparation Program

ISP® Certification Boot Camp (New for 2015)

ISP® EPP Genesis : Bill Uttenweiller

Receiving Lonnie R. Buckels Presidential Award in 2008 from NCMS President Paulette Hamblin

Receiving James N. Hickok Industrial Security Professional Award in 2013 from NCMS President Rhonda Peyton

•

2005 : Creates ad-hoc study group for Seattle ISP® exam. Gains approval from NCMS Board of Directors to develop an ISP® Examination Preparation Program (EPP). Creates first NCMS ISP® web page, recruits exam study group mentors and publishes “Passing the ISP® Exam” test taking booklet

•

2006 : ISP® EPP Round #1 debuts with free teleconference lines to support weekly study group meetings. Publishes the first “ISP® EPP Workbook”

ISP® Exam Preparation Program (EPP) EPP is run by ISP® volunteer mentors and operates entirely separately from ISP® Certification Program EPP doesn’t provide answers to ISP® exam questions Offers a structured approach to studying using workbooks and teleconference group discussions Candidates can purchase a EPP Workbook for $50 *** (http://www.ncms-isp.org/documents/Workbook_Order_Form.pdf)

Workbook contains study sections that review NISPOM and provide syllabus of weekly topics to be covered *** DFW Chapter Executive Board will reimburse 50% of EPP Workbook cost if a chapter member in good standing with NCMS passes their exam and isn’t reimbursed by their company

ISP® EPP Schedule Two “Rounds” conducted every year, each consisting of 13 weeks of study group teleconference sessions First round supports exam at NCMS National Seminar Students review reference materials and workbook section in advance of teleconference topic for that week EPP sessions are led by three person ISP® mentor team -

Each lasts about an hour

-

Offered 3x each week (Pick most convenient date/time)

-

Sessions are recorded and posted for review on NCMS web site

EPP FAQs and schedule for current Round posted at: http://www.ncms-isp.org/ISP_Exam_Preparation_Program/Program_FAQs.asp#1

ISP® EPP Weekly Session Topics Call #1A - Get started, go over "Test Tips" article for information/techniques/tips, evaluate class size, etc. Call #1B – Look-up five questions practice run using paper and electronic The Annotated NISPOM (TAN). Discuss Adobe Acrobat search techniques Calls #2 - #10 - Cover 10% of NISPOM in each session Call #11 - Last minute questions and wrap-up Plus optional calls covering five exam elective topics

How to Sign Up for ISP® EPP Send email request to: [email protected] EPP Mentor Team will send out enrollment instructions Don’t wait to sign up until end of current EPP Round Can sign up now Recorded EPP sessions available for student use

New for 2015 : ISP® Certification Boot Camp NCMS, Inc. 51st Annual Training Seminar June 23-25, 2015 Bellagio Las Vegas NCMS ISP® Certification Boot Camp at the Annual Training Seminar

Platinum Seminar Sponsor

Industrial Security Professional (ISP®) Certification Boot Camp (Sunday) When:

8:00am - 3:00pm at the Bellagio Las Vegas (Sunday, June 21)

Cost:

$150/NCMS members; $200/non-members

Note:

This class is NOT included in your NCMS Seminar Registration Fee. You must preregister for this class and pay the additional fee.

Target Audience:

Security professional preparing to take the ISP® exam.

Silver Seminar Sponsors

Why take The course will provide ISP® candidates the the course? ability to ask our ISP® subject matter experts questions on specific areas of the NISPOM, gain tips on preparing for the exam from current ISP®'s and benefit from group discussions. The ISP® Boot Camp is designed for security professionals who are preparing to take the Industrial Security Professional exam. The ISP® Boot Camp will provide candidates with the opportunity to enhance their exam preparations through a classroom setting discussion and review led by Subject Matter Experts. Candidates are encouraged to bring their Exam Preparation Program (EPP) workbook.

Final Comments on ISP® Program Both study materials and exam are available 24/7 Exam isn’t easy but candidates will pass if : - Prepare in advance (Enroll in EPP)

- Don’t test on a “Really Bad Day” - Practice test discipline : 110 answers in 120 minutes - Avoid looking up everything!

Current DFW Chapter ISPs Carlos Chandler (#358) Jane Dinkel (#324) Jose Escobar (#23) Sheri Escobar (#154)

Tamiko Pickering (#367) Jessica Quigley (#453) George Quin (#66) Rae Rolison (#309) Robert Ross (#450) Johnnie Showalter (#67) Beth Thurman (#442) Michael Uthoff (#223) Stephen Weldon (#216)

Questions and Answers

DFW Chapter ISP® Committee Chair George Quin CPP, ISP® Lockheed Martin Aeronautics (Fort Worth) [email protected]

817-763-3406