On October 18, the National Institute of Standards and Technology (NIST), in coordination with the Department of Defense (DoD) and the CUI Executive Agent, will host an informational workshop providing an overview of Controlled Unclassified Information (CUI), the Defense Acquisition Regulations System (DFARS) Safeguarding Covered Defense Information and Cyber Incident Reporting Clause, and NIST Special Publications 800-171 and 800-171A. This workshop will also feature panels of Federal Government representatives discussing expectations for evaluating evidence and implementing the CUI Security Requirements and industry representatives sharing best practices and lessons learned.
December 10, 2018
9:00 a.m. – 3:00 p.m.
National Archives Museum
701 Constitution Avenue, NW
Washington, DC 20408
This day is an opportunity for Executive branch entities or other stakeholders (i.e., Nonfederal organizations) to view and learn about products and services that have been developed for the CUI Program. This event is free to all presenters, vendors, and attendees.
If you are interested in attending this event please RSVP to CUI@NARA.GOV
If you are interested in a booth or in presenting, please submit this form to CUI@NARA.GOV NLT October 12, 2018. Booth and presentation timeslots will be assigned on a first come first serve basis. Submissions will be approved by October 19, 2018.
• 12 booths (each includes a 6 foot table) will be offered to display and present products and services related to the CUI Program.
• 6 time slots (each 30 minutes) will be offered to address products and services related to the CUI Program.
The Department of Veteran Affairs will host a CUI Symposium on November 8, 2018, 2:30 -4:00 pm at 810 Vermont Avenue NW, Washington DC 20420, in the G.V. “Sonny” Montgomery Veterans Auditorium, Room 230.
Panel members from DOI, IRS and CUI Executive Agent will also share their CUI Deployment knowledge and experiences.
Registration is scheduled to open in early October. Please contact Dr. Dorothelia Byrd with questions @ Dorothelia.Byrd@va.gov
ISOO has developed seven new training modules. These videos offer the most up-to-date information about the CUI Program.
- Introduction to Marking CUI (updated August 6, 2018): This video provides an overview of how to mark documents, emails, presentations, systems, and other files that contain CUI. It specifically addresses the designation indicator and the CUI banner marking, including the CUI control marking, CUI category markings, and Limited Dissemination Control Markings. It also discusses portion marking, the use of cover sheets, marking multi-page documents, and decontrolling CUI.
- Marking Commingled Information: This video describes how to mark documents that contain both CNSI and CUI. Specifically, it covers portion and banner markings and how to mark emails and presentations.
- Controlled Environments (updated August 6, 2018): This video presents the viewer with examples of two environments, one that is considered suitable for the storage and handling of CUI and one that is not. It discusses why controlled environments are important and the different approaches agencies can take to creating their own controlled environments.
- Destruction of CUI (updated August 6, 2018): This video discusses the different destruction methods that are appropriate for CUI when it is no longer needed.
- Lawful Government Purpose (updated August 6, 2018): This video addresses the principle of Lawful Government Purpose, or the standard for deciding when to share and when not to share CUI.
- Freedom of Information Act FAQs (updated August 7, 2018): This video addresses some of the most frequently asked questions about CUI and FOIA.
- Freedom of Information Act Panel Discussion (updated August 7, 2018): This video is a discussion of CUI and FOIA expanding on the concepts covered in the July 3, 2014 memo Revised Guidance regarding Controlled Unclassified Information and then Freedom of Information Act.
Agencies (and stakeholders) may wish to use these videos to supplement their CUI Program training. However, it is important to note that ISOO does not track completion of these modules, so if your organization wishes to require viewing of these videos as part of your CUI training program, you must download and run them from organization’s training platform. MP4 versions will be made available for download from the CUI Registry in the coming weeks.
Two major NIST publications are about to be finalized on June 14: NIST Special Publication (SP) 800-171A, “Assessing Security Requirements for Controlled Unclassified Information”; and an update to the NIST SP 800-171, “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.” The draft 171A text may be found on the NIST site: https://csrc.nist.gov/pu
Conference number: PWXW7483514
The webinar will include:
- A brief overview of the CUI program;
- An update on agency implementation efforts;
- A review of all existing notices, policies, training and resources currently available from the CUI Registry;
- The status and plans for a CUI Federal Acquisition Regulation Rule; and
- Time for Questions and Answers. Note: During the webinar, participants may submit questions through the instant messenger feature.
Please join the Department of Veterans Affairs (VA) for its Controlled Unclassified Information (CUI) Symposium to learn about the CUI Program, associated implementation efforts, and expected federal impact. The symposium will feature VA CUI subject matter experts, alongside panelists from the National Archives and Records Administration (NARA), the U.S. Department of State (DoS) and the Internal Revenue Service (IRS).
EventBrite Registration: https://www.eventbrite.com/e/controlled-unclassified-information-cui-symposium-tickets-41336909810
Address: G.V. “Sonny” Montgomery Veterans Auditorium (RM 230), 810 Vermont Ave NW, Washington D.C. 20420
Controlled Unclassified Information (CUI) is information that the Government creates or possesses. CUI requires protection under laws, regulations, or Government-wide policies, and it can correspond to any of the following sources: privacy, health, military, information technology (IT), contract, and personnel data.
Within VA, the Office of Information and Technology’s (OIT) Department of Quality, Privacy, and Risk (QPR) hosts the Controlled Unclassified Information (CUI) Program, a consolidation of best practices that standardize how sensitive information is marked, handled, disseminated, decontrolled, and destroyed across federal agencies.
Are there ID or minimum age requirements to enter the event?
You must be a US government employee or contractor with a valid government ID to attend the VA CUI Symposium.
How can I contact the organizer with any questions?
Please send any questions about the VA CUI Symposium to firstname.lastname@example.org.
Do I have to bring my printed ticket to the event?
Yes, please print your ticket and bring it to the event.
Is my registration fee or ticket transferrable?
No, tickets are not transferrable.
Is it ok if the name on my ticket or registration doesn’t match the person who attends?
No, the name on your ticket must match the name on your valid government ID to enter the event.
The next scheduled webinar will be February 15, 2018 (1-3 EDT). All subscribers to the CUI Blog will receive links and call-in information to access the webinar prior to the event.
Agencies can waive the requirement to re-mark legacy information with the new CUI markings while the CUI is in their control. The CUI Program does not require the agencies to re-mark unless reusing and sharing the information with others outside of their agency. In addition, because the CUI regulation also contains flexibility in handling such things as existing on-line databases with numerous PDF documents, a flash screen may suffice to alert users that a law, Federal regulation, or Government-wide policy requires safeguarding and dissemination controls.