U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Was this page helpful?

National Security Information Briefings

The OSY Information Security (InfoSec) Program is responsible for providing and ensuring compliance with several types of briefings and training to the Department of Commerce (Department) employees, contractors, and other Department affiliates granted access to classified national security information (CNSI). 

Executive Order 13526 and 32 CFR part 2001 and 2003 provide the guidelines for required classification management training. All personnel who work with classified information must receive an active security clearance. The clearance is activated after initial CNSI training and signing a Nondisclosure Agreement, SF-312. Additional training requirements for all individuals that work with CNSI include annual refresher training, derivative classification training, annual training for original classification authorities, and Sensitive Compartmented Information refresher training depending on the employee’s duties.

Security Briefings are scheduled for initial clearance activation at HCHB. Contact InfoSec for the date/time/location. For personnel located outside of HCHB, please contact your Field Security Office.

Initial CNSI/Derivative Classification and Annual Refresher Training

After being approved for access to NSI, but before such access is provided, confirm the need-to-know and brief about proper handling, disseminating, safeguarding, and storage with a signed Non-Disclosure Agreement (NDA), Standard Form (SF) 312.

Initial CNSI Training and refresher training cover:

  • Basic security policies - E.O. 13526, Sec. 4.1 / 32 CFR 2001.71(b)
  • Principles - E.O. 13526, Sec. 1.7
  • Criminal, civil, and administrative penalties - E.O. 13526, Sec. 5.5 
  • Best Practices

An individual completes an NDA and initial CNSI training to activate their access to classified information after the clearance investigation is adjudicated. The annual refresher training is required to maintain an active security clearance.

The Initial CNSI training includes Derivative Classifier responsibilities. Incorporation, paraphrasing, and restating of information, which is already classified, are examples of derivative classification actions and regularly occur when handling CNSI. CNSI training is required before access will be granted to CNSI systems and can help prevent the loss and unauthorized disclosures of information which may damage the national security of the United States.

CNSI References:

  • Principles of derivative classification (E.O. 13526, Sec. 2.1)
  • Classification levels (E.O. 13526, Sec. 1.2)
  • Duration of classification (E.O. 13526, Sec. 1.5 / 32 CFR 2001.12)
  • Identification and markings (E.O. 13526, Sec. 1.6 / 32 CFR 2001 Subpart C)
  • Classification prohibitions and limitations (E.O. 13526, Sec. 1.7)
  • Sanctions (E.O. 13526, Sec. 5.5)
  • Classification challenges (E.O. 13526, Sec. 1.8 / 32 CFR 2001.14)
  • Security classification guides (E.O. 13526, Sec. 2.2 / 32 CFR 2001.15)

Original Classification Authority (OCA) Training

Information related to one of the categories of information identified by Executive Order (E.O.) 13526, the loss or unauthorized disclosure of which has been determined, would damage the United States’ national security that has not previously been classified, i.e., information which is not derivative must be classified. However, such information may only be classified by an individual who, by position, has been designated an OCA. Before an individual is designated as an OCA, they must complete the initial OCA training. The Information Security Division provides OCA training for the Department of Commerce (osy_infosec@doc.gov).

  • Classification standards (E.O. 13526, Sec. 1.1 / 32 CFR 2001.10)
  • Classification levels (E.O. 13526, Sec. 1.2)
  • Classification Authority (E.O. 13526, Sec. 1.3)
  • Classification Categories (E.O. 13526, Sec. 1.4)
  • Duration of Classification (E.O. 13526, Sec. 1.5 / 32 CFR 2001.12)
  • Identification and Markings (E.O. 13526, Sec. 1.6 / 32 CFR 2001 Subpart C)
  • Classification prohibitions and limitations (E.O. 13526, Sec. 1.7)
  • Sanctions (E.O. 13526, Sec. 5.5)
  • Classification challenges (E.O. 13526, Sec. 1.8 / 32 CFR 2001.14)
  • Security classification guides (E.O. 13526, Sec. 2.2 / 32 CFR 2001.15)
  • Information sharing

Security Debriefing

As clearances belong to a position, not the employee, employees separating from the Department of Commerce for any reason, e.g., retirement, resigning, transitioning to a new Department or Agency, must receive a security debriefing. The debriefing requires an endorsement of the Security Debriefing Acknowledgement portion of the SF-312 Non-Disclosure Agreement. If a person is moving into a new position within the Department of Commerce that does not require access to classified information, they are debriefed. Contact your servicing Field Security Office to schedule a debriefing.

For more information on outprocessing, please click here.