See JM 3-15.200.
The District Security Plan shall include:
- General Site Information: Include geographical locations of main and branch offices, approximate size and physical layout of each office, which numbered floors the offices occupy, and the age and historical significance of buildings occupied.
- Threat Information: Generally describe threats and any other factors which should be considered in determining appropriate security measures for district offices. Include information concerning the crime rate in the immediate area, domestic terrorist or criminal organizations which are based or operate within the district, and any geologic phenomena or severe recurring weather conditions (e.g., earthquakes, tornados, flooding, hurricanes, etc.).
- Security Responsibilities: Identify those individuals assisting the DOSM and outline the security assignments and responsibilities of each (i.e., Deputy DOSM, Communications Security Representatives, System Manager, Safety and Health Coordinator, etc.).
- Personnel Security: Briefly describe the applicant screening and grand jury reporter clearance processes and procedures concerning background investigations, reinvestigations, requests for national security clearances, and assignment of personnel to the Organized Crime and Drug Enforcement Task Force.
- Information Security: Discuss briefly the types and volume of information (e.g., tax, grand jury, privacy act, witness protection, national security, etc.) held, and describe the procedures, equipment, and facilities used to protect and store such information during both working and nonworking hours. Include a description of the frequency, procedures, and equipment used for the destruction of documents, and identify any private contractors or facilities employed to perform destruction.
- Computer Security: To illustrate compliance with DOJ Order 2640.2C, include information concerning: the designation of the Computer Systems Security Officer; the status of computer security and contingency plans; the dates and results of the most recent risk analyses; any office-specific policies and procedures developed; backup file procedures; and the implementation of password procedures and virus detection, access control, and encryption software.
- Secure Communications: Identify the COMSEC Representatives, and indicate any training they have attended. Describe the number and locations of secure telephones and secure facsimile equipment installed in each district office.
- Physical Security: Identify those individuals who represent the USAO on Court Security and/or Building Security Committees. Indicate security measures employed at building and USAO entry points, including: hours and type (i.e., USMS, CSO, GSA, contract) of guard coverage, locations of magnetometer and X-ray screening equipment, entities providing emergency response during working and nonworking hours, building access procedures during nonworking hours, any nearby government offices which could offer assistance (e.g., FBI, USMS, ATF, etc.). Briefly describe the hardware and procedures employed in the security system of each district office. Describe the procedures by which visitors and employees enter the USAOs. Specify when offices are cleaned, and what level of supervision is provided cleaning personnel. List other areas within the USAO which employ compartmented access controls such as computer rooms, secure storage/vault areas, interview rooms, financial collection offic es, or secure conference rooms, and explain the additional controls utilized. Describe the location and physical security of the grand jury room. Include an evaluation of its susceptibility to physical penetration during working and nonworking hours, the ease with which witnesses may be brought in undetected, and whether discussions are audible to individuals outside.
- Occupational Safety and Health: Identify the Safety and Health Coordinator and indicate what, if any, training the coordinator has attended. Briefly discuss procedures and local policies developed, and any unique situations which impact upon the safety and health program, and measures undertaken to alleviate them.
Emergency Planning: This section will contain a copy of the Occupant Emergency Plan and a discussion of any special provisions which have been established in support of the plan. Specific items which are to be included are: whether or not this office is the prime tenant in a Federally-owned facility; if the plan makes provisions for communications, a command center, serious illness, injuries or mechanical entrapment; identification of emergency medical resources; identification of employees trained in first aid/CPR; evacuation procedures; designation of key individuals and assignment of duties; bomb threat, search and removal procedures.
Indicate if, for the purposes of federal emergency preparedness programs, the USA has been designated a regional senior DOJ official and identify the individual appointed as the JREC. Explain the development and any provisions adopted in support of this program, and describe the procedures used to implement liaison between the JREC, the Federal Emergency Management Agency, and participating DOJ field components. Indicate the development and use of contingency plans for bomb threats, alternate information storage, natural disaster, inclement weather, for flood or fire. This section should also include estimates for off-site emergency requirements such as: space requirements, storage requirements, transportation, financial and personnel support.
- Security Education and Awareness: Provide a brief overview of the frequency, content, and methods used to furnish employees information and training concerning the various security disciplines.
- Security Deficiencies: Identify any security deficiencies, explaining limiting or other factors (e.g., building design, office procedures, etc.) and any remedial steps being taken to correct the situation.
- Dissemination: Indicate to what personnel and organizations the plan is distributed.
[cited in JM 3-15.200]