Whereas the visits could conjure up visions of security inspections with security representatives readily available, that’s not the case.
Assurance groups don’t conduct security inspections however fairly danger assessments with principal command leaders over a one-week interval. The phrase ‘security’ will solely be heard as soon as, mentioned the gold staff lead in NAVSAFECOM’s assurance directorate, Capt. Brian Turney.
“We begin discussions with instructions by saying the one time you’ll hear the phrase ‘security’ is after we say we’re right here from the Naval Security Command,” Turney mentioned. “Danger and self-improvement are the first topics of dialogue.”
Assurance groups have performed 11 assessments since June. Assessed instructions admire the suggestions offered and notice the assessments are serving to them enhance, mentioned the director of NAVSAFECOM’s assurance directorate, David Bussel.
“The assessments measure whether or not behaviors of self-awareness, self-assessment, self-correction and continuous studying are instilled inside the command,” Bussel defined. “When these behaviors are current, then the command is probably going ‘secure to function’ and ‘working safely’ as a result of they’re correctly figuring out and speaking danger, and accounting for danger on the applicable degree.”
So what does ‘secure to function’ and ‘working safely’ imply? It’s a query that instructions have requested NAVSAFECOM assurance groups.
“All through this primary 12 months of assessments, we can even assume an academic position to elucidate new ideas from the just lately revamped Security Administration System (SMS),” mentioned the NAVSAFECOM assurance directorate’s blue staff lead, Capt. John Bub. “We perceive that it is a studying course of and find out how to higher self-assess and self-correct.”
For instance, the reassurance groups will clarify that ‘secure to function’ and ‘working safely’ are the lynchpins inside the SMS, which inspires a security focus and mindset that embraces self-assessment and self-correction to handle danger and preserve accountability. The SMS depends on 4 key takeaways: secure place, secure individuals, secure property and materiel, and secure processes and procedures (4Ps).
But the ‘secure to function’ and ‘working safely’ ideas should not one and the identical, which is vital to know, Bub mentioned.
“These are fully completely different features, and who owns these features may be completely different,” Bub mentioned. “However they don’t function in isolation and in reality, are fully reliant on the opposite.”
‘Protected to function’ is the as-designed security for locations, property and materiel, individuals, and processes and procedures. It’s the defining design, coverage, engineering, resourcing and expectation administration that units the security danger envelope for the hazardous exercise or actions for a given working surroundings.
However, ‘working safely’ is executing the mission inside the designed security envelope. When unplanned or unexpected security dangers manifest exterior of the authorised security case and the army profit (operationally outlined goal) of taking the chance outweighs the price of the chance publicity, then instructions ought to apply the ideas of operational danger administration to manage danger.
NAVSAFECOM conducts three tiers of assessments for Echelons II by way of V instructions:
- Tier I: The peace of mind directorate supplies assurance of Echelon II-III danger resilience in addition to security and danger administration programs and insurance policies with a view to guarantee the Naval Enterprise is secure to function and working safely by figuring out, speaking and accounting for danger on the applicable degree.
- Tier II: Certification and inspection groups from aviation, shore, afloat and expeditionary directorates give attention to inspection and certification processes in assist of the Navy’s Optimized Fleet Response Plan (OFRP) milestones. Units embody provider strike teams (CSG) and afloat coaching teams (ATG).
- Tier III: Multidisciplinary groups from aviation, shore, afloat and expeditionary directorates give attention to day-to-day unit-level (Echelons IV and V) requirements and compliance throughout native space assessments.
Whereas Tier II and III assessments are no-notice, the NAVSAFECOM assurance directorate, who conducts Tier I assessments, will notify instructions eight weeks upfront asking for information and paperwork no later than 4 weeks previous to the evaluation. The 8-week advance discover additionally ensures that instructions have principals readily available similar to administrators.
Through the evaluation week, the Tier I assurance groups will conduct interviews, overview data, and observe battle rhythm and decision-making occasions.
Following the reassurance evaluation week, NAVSAFECOM will present the unit commander an evaluation out temporary and follow-on written report with a ‘grade’ corresponding with ranges of danger management effectiveness and particulars relating to dangers. The assessed command will in flip present a response report outlining corrective actions to their reporting senior inside 30 days.
NAVSAFECOM will not be the first recipient of the response report however fairly copied as a result of the chance image belongs to the commander, mentioned the deputy director of NAVSAFECOM’s assurance directorate, Nate Elder.
“It’s not the place of the evaluation staff to evaluate particular person danger selections as a result of that’s the position of the commander,” Elder mentioned. “Our groups confirm to the commander whether or not workers processes are in place to offer an entire danger image when the commander must make an built-in danger choice. We’re the third celebration coming in to look and see how nicely the system is working and assist spotlight the place enhancements may be made.”
