ANNEX 1-B
Industrial Security Program
Alternate Company Security Officer
Security Appointment and Acknowledgement and Undertaking

PDF Version (203Kb) Help on Alternative Formats

Please select

hereby appoint, the following Canadian Citizen or Permanent Resident of Canada as Alternate Company Security Officer (ACSO) and attest that the appointee is able to fulfill all obligations relating to the position as listed below.

  1. In relation to a Designated Organization Screening (DOS) or a Facility Security Clearance (FSC) within the Industrial Security Program (ISP), the ACSO is responsible for:
    1. identifying those employees who require access to Protected/Classified information, assets, or Protected/Classified work sites and ensuring that accurate and complete personnel security screening documentation is submitted for such employees;
    2. providing change of circumstance reports for personnel with regard to their security screening status as outlined in the Industrial Security Manual (ISM);
    3. where necessary, arranging Resolution of Doubt interviews with employees;
    4. ensuring that employees receive a security briefing upon notification of having been granted a Reliability Status or Security Clearance by completing the Security Screening Certificate and Briefing Form (TBS 330-47);
    5. ensuring the Security Screening Certificate and Briefing Form (TBS 330-47) is submitted in order to terminate the Reliability Status or Security Clearance of those employees who no longer require access to Protected/Classified information and assets or controlled sites in accordance with contractual requirements;
    6. ensuring that only personnel who have been security screened to the appropriate level and who have a need-to-know have access to Protected/Classified information and assets or controlled sites in accordance with contractual requirements;
    7. maintaining a current list of security screened employees in accordance with Chapter 2 (section 208) of the ISM;
    8. in coordination with client's security representatives, ensuring that employees working at client sites are briefed by the client concerning any relevant security requirements;
    9. ensuring that personnel security screening files are properly safeguarded;
    10. ensuring the proper completion of Request for Visit forms;
    11. in the case of FSCs, ensuring that all the organization's Key Senior Officials (KSOs), Company Security Officers (CSOs) and ACSOs are cleared to the highest level of access required;
    12. for DOS ensuring that all the CSOs and ACSOs are security screened to Reliability Status;
    13. informing the ISP of any changes in the organization's legal status or ownership and, in the case of FSCs, changes in the list of KSOs;
    14. informing the ISP prior to any physical move or new construction which could affect the safeguarding of Protected/Classified information or assets;
    15. overseeing the Security Requirements Check List (SRCL) and contract security clauses and ensuring that all security requirements are adhered to; and
    16. obtaining approval from the ISP prior to subcontracting contracts with security requirements.
  2. In relation to a DOS or an FSC with Document Safeguarding Capability within the ISP, the ACSO is responsible for:
    1. preparing Security Orders (refer to Annex 1-C of the ISM) and ensuring that all personnel who have access to Protected/Classified information and assets have been briefed on their security responsibilities through the implementation of an effective security awareness program;
    2. appointing, when required, an IT Corporate Security Coordinator and designates;
    3. ensuring that all Protected/Classified information and assets are safeguarded and handled in accordance with the provisions of the ISM;
    4. ensuring that CSO inspections are conducted, at least annually, of all the organization's facilities that hold Protected/Classified information and assets and that records of these inspections are retained for at least three years;
    5. providing, as a minimum, an annual inventory of Protected/Classified information and assets;
    6. ensuring that all security violations are recorded and subsequently investigated; and
    7. ensuring that the ISP is immediately notified of any breach or compromise, and that a written report is submitted to the ISP as soon as possible. Investigation of breaches or instances of compromise shall be coordinated by the ISP.
  3. To ensure that security issues are properly addressed and properly coordinated, it is necessary that the CSO/ACSO be the official contact with the ISP. In most cases, the CSO/ACSO will bring issues to the ISP by contacting the ISP Client Service Centre at 1-866-368-4646 or ssi-iss@tpsgc-pwgsc.gc.ca. Communication with the ISP, whether written or oral, should be limited to the CSO and the ACSO(s) or the Chief Executive Officer or Designated KSO of the organization.

ACSO Appointment

ACSO Acknowledgement

understand and hereby accept the responsibilities of ACSO, as defined in the ISM and shall abide by the provisions of the manual

Government Use Only