Videos (no certificate provided)

• National Counterintelligence Executive Statement on Unauthorized Disclosure 
• Attorney General Statement on Unauthorized Disclosure 

Training

• Unauthorized Disclosure (UD) of Classified Information and Controlled Unclassified Information (CUI) IF130.16
• Insider Threat Awareness Course INT101.16
• Counterintelligence Awareness & Reporting Course for DOD CI116.06
• NISP Reporting Requirements IS150.16 
• Standard Form 312 (SF312) Video 
• Unauthorized Disclosure Security Professional Briefing 
• Unauthorized Disclosure Workforce Briefing 

Job Aids

• CDSE Unauthorized Disclosure Job Aid 
• DOD Unauthorized Disclosure Desk Reference 

Webinars

• Security Chat with the Unauthorized Disclosure Program Management Office

Case Studies

• Unauthorized Disclosure (UD) Case Study: Shamai Leibowitz
• Unauthorized Disclosure (UD) Case Study: Benjamin Bishop
• Unauthorized Disclosure (UD) Case Study: Candace Claiborne
• Unauthorized Disclosure (UD) Case Study: Bryan Martin
• Unauthorized Disclosure (UD) Case Study: Gary Maziarz

National Policy

• Executive Order 13526, Classified National Security Information 
• 32 CFR (Code of Federal Regulations) Parts 2001 & 2003, Classified National Security Information; Final Rule 
• SF-312, Classified Information Nondisclosure Agreement 
• EO13587 Structural Reforms to Improve the Security of Classified Networks…and Safeguarding of Classified Information 
• Intelligence Community Directives 
• Standard Form 312 (SF312) Video 
• Non-Disclosure Policies, Forms, or Agreements Conformance with Whistle Blower Protection Act Memorandum 

Whistleblower Policies and Rights

• Executive Order 12333 Intelligence Oversight 
• The Whistleblower Protection Act Presidential Policy Directive / PPD-19 
• No FEAR Act 

DOD Policy

• DODD 5210.50, Management of Serious Security Incidents Involving Classified Information 
• DODI 5200.01, Information Security Program and Protection of SCI 
• DODI 5230.29, Security and Policy Review of DOD Information for Public Release 
• DODM 5200.01, Volume 1, DOD Information Security Program: Overview, Classification and Declassification 
• DODM 5200.01, Volume 2, DOD Information Security Program: Marking of Classified Information 
• DODM 5200.01, Volume 3, DOD Information Security Program: Protection of Classified Information 
• DODI 5200.48 Controlled Unclassified Information (CUI) 
• National Industrial Security Program Operating Manual (NISPOM) 
• DODI 5230.09, Clearance of DOD Information for Public Release 
• DODD 5148.13 Intelligence Oversight 
• DOD Directive 5205.16, The DOD Insider Threat Program 
• ISOO Notice 2017-04: Security Classification Guides 

Unauthorized Disclosure Case Studies

• Unauthorized Disclosure (UD) Case Study: Benjamin Bishop
• Unauthorized Disclosure (UD) Case Study: Bryan Martin
• Unauthorized Disclosure (UD) Case Study: Candace Claiborne
• Unauthorized Disclosure (UD) Case Study: Gary Maziarz
• Unauthorized Disclosure (UD) Case Study: Henry Frese
• Unauthorized Disclosure (UD) Case Study: John Beliveau
• Unauthorized Disclosure (UD) Case Study: Izaak Kemp
• Unauthorized Disclosure (UD) Case Study: Edward Lin
• Unauthorized Disclosure (UD) Case Study: Harold Martin III
• Unauthorized Disclosure (UD) Case Study: Nghaiv Hoang Pho
• Unauthorized Disclosure (UD) Case Study: Reality Winner
• Unauthorized Disclosure (UD) Case Study: Reynaldo Regis

Unauthorized Disclosure General Awareness

• Dangerous Disclosure: Graphic Novel by PERSEREC, April 2020 

Unauthorized Disclosure Posters

• Insider Threat - Spillage v3 8.5x11 / 17x22 
• Insider Threat - Spillage v2 8.5x11 / 17x22 
• Whistleblower 8.5x11 / 17x22 
• Think before you click 8.5x11 / 17x22 
• Insider Threat Vigilance 8.5x11 / 17x22 
• Protecting them here... 8.5x11 / 17x22 

Prepublication Review

The Defense Office of Prepublication and Security Review (DOPSR)  is responsible for managing the Department of Defense security review program, reviewing written materials both for public and controlled release. This includes official government and defense industry work products, as well as materials submitted by cleared or formerly cleared individuals pursuant to their voluntary non-disclosure agreement obligations. DOPSR also coordinates official work products with Defense enterprise stakeholders to ensure that information being released is both accurate and represents the Department's official position.

• DOD Office of Prepublication Security Review (DOPSR) Mandates and Authorities 

Videos

• National Counterintelligence Executive Statement on Unauthorized Disclosure 
• Attorney General Statement on Unauthorized Disclosure 
• Unauthorized Disclosure Video Lesson: DNI Testimony 
• Unauthorized Disclosure: Protecting Classified Information 

Security Awareness Games

• Unauthorized Disclosure Magic 8 Ball 

Reporting Unauthorized Disclosure

With diligent reporting, the consequences of unauthorized disclosure can be mitigated. If you see or suspect unauthorized disclosure, first take steps to protect the classified information. Then report to your organization's security officer. If you are a DOD employee, report the incident to your security manager. If you are a cleared contractor, report the incident to your Facility Security Officer (FSO) who will, in turn, report it to your company's Defense Counterintelligence and Security Agency Industrial Security Representative (DCSA IS Rep).

Consider the following resources for more information on reporting unauthorized disclosure or attempts to solicit classified information:

• Unauthorized Disclosure (UD) of Classified Information and Controlled Unclassified Information (CUI) IF130.16
• Insider Threat Awareness Course INT101.16
• Counterintelligence Awareness & Reporting Course for DOD CI116.06
• NISP Reporting Requirements IS150.16 

For Security Managers and other responsible authorities within the components, the CMIS Security Incident Database is the Department of Defense System of Record for the tracking and oversight of all UD's and Serious Security Incidents. It is located on SIPR at: https://ousdi.csd.disa/smil.mil. Accounts for the system are created and managed by the DITMAC UD PMO. CMIS allows you to:

• Track incidents
• Get examples of reporting formats
• Easily download charts for statistics
• Can be used by components to track other security incidents

Unauthorized Disclosures can be emailed to the DITMAC UD PMO via group accounts:

.SIPR: dss.quantico.dss-hq.mbx.ditmac-unauthorized-disclosure@mail.smil.mil
.JWICS: DITMAC.UD@dss.ic.gov

Access the DITMAC UD intelink site for more information: https://intelshare.intelink.gov/sites/ousdi/hcis/sec/icdirect/ud/default.aspx/ 

Reporting Questionable Government Activities

The Whistleblower Protection Act (PPD-19) protects employees from direct retaliation for acts of reporting protected disclosures. It does NOT protect employees who unlawfully disclose classified information. Report questionable government activity to your supervisor or your organization's security officer. If you are not comfortable reporting to these sources, other avenues are available including the DOD Senior Intelligence Oversight Official, the DOD Inspector General, the US Attorney General, and the DOD Hotline.

Consider these resources for more information:

• The DOD Whistleblower Program 
• Whistleblower FAQ 
• No FEAR Act Reporting 
• DODD 5148.13 Intelligence Oversight  Incorporating DOD Guidance for Reporting Questionable Intelligence Activities and Significant or Highly Sensitive Matters
• DOD Hotline Information 
• DOD Senior Intelligence Oversight Official 

General Workforce

• Immediately protect the information
• Report unauthorized disclosure
  
  Consider the following resources for more information on securing classified information, including information on the internet or other media formats, negligent discharge of classified information (NDCI) or "spills", and spills involving controlled unclassified information (CUI).
   
  • Unauthorized Disclosure (UD) of Classified Information and Controlled Unclassified Information (CUI) IF130.16
  • Insider Threat Awareness Course INT101.16
  • Counterintelligence Awareness & Reporting Course for DOD CI116.06
  • NISP Reporting Requirements IS150.16 
  • Cybersecurity Toolkit

Security Personnel and Other Authorities

• Investigate the incident
• Impose sanctions
• Report to Congress, if required
• Conduct damage assessment
  
  Consider the following resources for more information on incident response, including those involving special access program, controlled unclassified information, and data spills; potential required reporting to the FBI, DSCA, OUSD(I), and/or Congress; original classification authority review; damage assessments; and more.
   
  • Derivative Classification IF103.16
  • Safeguarding Classified Information in the NISP IS109.16 
  • Classified Storage Requirements Short
  • Disposal and Destruction Short
  • Data Spills Short
  • Security Incident Reporting Requirements Short
  • Developing an Incident Response Capability
  • ISOO Notice 2017-04: Security Classification Guides