Department of Defense DIRECTIVE NUMBER 5105.67 February 19, 2002 DA&M SUBJECT: Department of Defense Counterintelligence Field Activity (DoD CIFA) References: (a) Title 10, United States Code (b) Presidential Decision Directive/National Security Council-75, "U.S. Counterintelligence Effectiveness, Counterintelligence for the 21st Century," December 28, 2000 (c) Executive Order 12958, "Classified National Security Information," April 17, 1995 (d) DoD Directive O-5205.7, "Special Access Program (SAP) Policy," January 13, 1997 (e) through (p), see enclosure 1 1. PURPOSE Pursuant to the authority vested in the Secretary of Defense by reference (a), this Directive establishes the Department of Defense Counterintelligence Field Activity with the mission, responsibilities, functions, relationships, and authorities, as prescribed herein. 2. APPLICABILITY This Directive applies to the Office of the Secretary of Defense (OSD), the Military Departments, the Chairman of the Joint Chiefs of Staff, the Combatant Commands, the Office of the Inspector General of the Department of Defense, the Defense Agencies, and the DoD Field Activities, as well as all other organizational entities within the Department of Defense (hereafter referred to collectively as "the DoD Components"). 3. MISSION The mission of the DoD CIFA is to develop and manage DoD Counterintelligence (CI) programs and functions that support the protection of the Department, including CI support to protect DoD personnel, resources, critical information, research and development programs, technology, critical infrastructure, economic security, and U.S. interests, against foreign influence and manipulation, as well as to detect and neutralize espionage against the Department. 4. POLICY It is DoD policy that: 4.1. The Department shall fully support the National Counterintelligence Program, as embodied in Presidential Decision Directive/National Security Council-75 (PDD/NSC-75) (reference (b)), and the National Counterintelligence Executive (NCIX). 4.2. The Department will make full use of advanced technology to create and maintain a collaborative CI analytic environment to protect critical DoD and national assets. 4.3. There is a single coordination focal point for DoD CI policy implementation, Defense-wide CI resource and budget planning, and for DoD CI implementation liaison with the NCIX staff in accordance with reference (b). 4.4. All DoD CI matters and activities that affect or are related to DoD Special Access Programs (SAPs) shall comply with the security procedures of Executive Order 12958 (reference (c)), DoD Directive O-5205.7 (reference (d)), and the DoD Overprint to the National Industrial Security Program Operating Manual Supplement (reference (e)). 5. ORGANIZATION The DoD CIFA is hereby established as a Field Activity within the Department of Defense, under the authority, direction, and control of the Assistant Secretary of Defense (Command, Control, Communications, and Intelligence) (ASD(C3I)). For certain functions as specified in this Directive or separately by the Secretary of Defense, the DoD CIFA shall be treated as a Combat Support Agency. It shall consist of: 5.1. A Director appointed by, and reporting to, the ASD(C3I). 5.2. The Joint Counterintelligence Evaluation Office (JCEO), the Joint CI Analysis Group (JCAG), the Defense CI Information System (DCIIS) Program Office, the Joint CI Training Academy (JCITA), and the Defense CI Force Protection Response Group (FPRG). In carrying out the mission of these elements, the Director of the DoD CIFA may employ law enforcement personnel, in whole or in part, as appropriate, to carry out the DoD CIFA's law enforcement functions as stated in paragraph 6.2.17. of this Directive. 5.3. Such additional subordinate organizational elements as are established by the Director, DoD CIFA, within authorized resources. 6. RESPONSIBILITIES AND FUNCTIONS 6.1. The Assistant Secretary of Defense (Command, Control, Communications, and Intelligence), pursuant to PDD/NSC-75 (reference (a)) and in accordance with Executive Order 12333, DoD Directive 5137.1, DoD Directive 5240.2, DoD Directive 5240.1, DoD 5240.1-R, Appendix 3 of Title 5, United States Code, and DoD Directive 5200.27 (references (f), (g), (h), (i), (j), (k), and (l)), shall: 6.1.1. Exercise authority, direction, and control over the Director, DoD CIFA. 6.1.2. Serve as the Principal Staff Assistant and advisor to the Secretary and Deputy Secretary of Defense regarding all CI policies and related matters. 6.1.3. Represent the Secretary of Defense in all matters with the NCIX. 6.1.4. Oversee the Defense CI Program. 6.2. The Director of the Department of Defense Counterintelligence Field Activity, under the authority, direction, and control of the ASD(C3I), shall: 6.2.1. Organize, direct, and manage the DoD CIFA and all assigned resources. 6.2.2. Serve as the principal advisor on DoD CI operational matters and policy-implementation activities to the OSD Principal Staff Assistants and other DoD Component officials and manage the execution of DoD CI policy issued by the ASD(C3I), pursuant to DoD Directive 5137.1 (reference (g)). 6.2.3. Develop a DoD CI implementation strategy and an implementation plan consistent with the national CI strategy, national guidance, and DoD CI strategy; the implementation plan shall include appropriate performance-measurement standards and resource metrics consistent with these aforementioned strategies. 6.2.4. Represent the Department with other Government and non-government agencies, including the NCIX staff, regarding the implementation of all DoD CI matters, and shall: 126.96.36.199. Oversee DoD implementation support to the NCIX organization. 188.8.131.52. Serve as the single coordination focal point within the Department for DoD CI program implementation, DoD CI resource planning, and DoD CI implementation liaison with the NCIX staff, to include coordination regarding NCIX decisions and functions regarding national CI resource allocations. 6.2.5. Regarding budgetary matters: 184.108.40.206. Prepare and provide, together with, and pursuant to, the policy guidance of the ASD(C3I) and submissions from the Secretaries of the Military Departments, submissions for the Department's Planning, Programming, and Budgeting System (PPBS). 220.127.116.11. Prepare and provide, together with, and pursuant to, the policy guidance of the ASD(C3I) and submissions from the Secretaries of the Military Departments, the Department's submissions to the Office of the Director of Central Intelligence for the Director of Central Intelligence Capabilities, Programming and Budgeting System (CPBS) to provide resources for the Foreign Counterintelligence Program in the National Foreign Intelligence Program, the Defense Joint Counterintelligence Program in the Joint Military Intelligence Program, and all other assigned DoD CI programs and activities. 18.104.22.168. Support the ASD(C3I)'s presentation and justification of DoD CI programs and budget throughout the PPBS process, including representations before the Congress, for all responsibilities and functions prescribed herein. 6.2.6. Develop, implement, and oversee DoD CI programs, as assigned herein, using state-of-the-art Information Technology (IT) whenever practicable, consistent with mission requirements, and consulting with the CI offices of the DoD Components to ensure the integrity of all CI IT systems. 6.2.7. Develop and manage an integrated Defense CI Program. 6.2.8. Develop and integrate the Defense CI Information System (DCIIS) Program, including, but not limited to, the architecture, software development, training, implementation, and sustainment of the DCIIS while ensuring the architectural integrity of the system. 6.2.9. Oversee Defense-wide CI investigations, operations, and CI functional services, and: 22.214.171.124. Perform programmatic evaluations of the Department's CI activities to determine the extent to which CI policies and resources adequately protect the Department of Defense against the threats of espionage, terrorism, sabotage, assassination, and other covert or clandestine activities, including those of foreign intelligence services. 126.96.36.199. Provide appropriate and timely access to all relevant CI investigative and operational information to designated senior DoD officials with CI responsibilities. 188.8.131.52. Provide timely advice and recommendations to the ASD(C3I) and other senior DoD officials concerning potential damage to DoD or national security that could result from the compromise of classified or sensitive information. Apprise appropriate policy makers of such damage and notify them about any CI investigations that have had, or could have, a significant impact on the Department. 184.108.40.206. Facilitate the dissemination of relevant CI and CI-related information to appropriate DoD personnel who have a need-to-know. 220.127.116.11. Review and report to the ASD(C3I) any significant developments regarding both initial and on-going CI investigations and operations that affect DoD personnel and resources, with particular emphasis on those investigations and operations that have the potential to seriously compromise critical Defense technologies, the Defense Information Infrastructure, and current or near-term military operations. Such reports shall address, where appropriate, the steps that can be taken to minimize the damage caused by the associated CI threat. 18.104.22.168. Recommend DoD policies and procedures that maximize the integrity of on-going CI investigations and operations within the Department. 6.2.10. Oversee the DoD CI Research and Technology Protection (RTP) Program. 6.2.11. Conduct risk assessments in support of CI RTP, DoD Critical Infrastructure Protection, DoD Force Protection, and: 22.214.171.124. Provide course-of-action analyses, situational awareness, and tailored product support to Heads of the DoD Components and other senior officials, as appropriate. 126.96.36.199. Provide CI threat assessments and advisories, risk assessments, and multimedia dissemination to the Heads of the DoD Components. 188.8.131.52. Coordinate and integrate applicable RTP efforts with Special Access Programs, through the OSD Special Access Program Coordination Office (SAPCO). 184.108.40.206. Provide tailored analytical and data-mining support to DoD CI field elements and activities of the DoD Components, as appropriate, but, in particular, to the Directors of the Defense Intelligence Agency, the Defense Security Service, the Defense Threat Reduction Agency, and the National Security Agency, as well as the Secretaries of the Military Departments. 220.127.116.11. Work within the larger DoD Intelligence Production Program in coordination with the Director, Defense Intelligence Agency, regarding the DoD CI Production Management Program. 18.104.22.168. Conduct Domestic Threat Analyses and Risk Assessments in support of DoD Force Protection and DoD Critical Infrastructure Protection efforts. 22.214.171.124. Conduct operational analysis in support of DoD CI investigations and operations. 6.2.12. Identify and track technologies requiring protection. 6.2.13. Oversee the DoD CI Technology Horizontal Risk Assessment and JCAG Threat Mapping processes and prepare Technology and Target Profiles and Technology Risk Assessments. 6.2.14. Oversee and conduct advanced joint CI training within the Department, and: 126.96.36.199. Exercise authority, direction, and control over the DoD Joint CI Training Academy. 188.8.131.52. Develop and provide to the ASD(C3I) procedural recommendations for CI training and professional development within the Department. 6.2.15. Supervise and conduct the activities of the DoD FPRG and in activities in support of the Combatant Commanders, coordinate FPRG plans and operations with the Chairman of the Joint Chiefs of Staff (CJCS), as necessary. 6.2.16. Oversee and conduct an advanced technology development program in support of the Defense Counterintelligence Program. 6.2.17. Carry out assigned functions and responsibilities in subparagraphs 6.2.2. through 6.2.16. of this Directive with the DoD CIFA operating as a law enforcement activity within the Department of Defense pursuant to the authorities vested in the Secretary of Defense in reference (a). Unless otherwise directed by the Secretary or Deputy Secretary of Defense, the law enforcement responsibilities assigned by this Directive do not replace or supersede those responsibilities currently assigned to the Defense Criminal Investigative Service (DCIS), the Army Criminal Investigative Division, the Naval Criminal Investigative Service, or the Air Force Office of Special Investigations as Defense Criminal Investigative Organizations (DCIOs). Accordingly, the DoD CIFA shall not engage in the investigation, apprehension, or detention of individuals suspected or convicted of criminal offenses against the laws of the United States. For SAPs and SAP-related investigations, the DCIS or the other DCIOs dedicated to SAPs have investigative jurisdiction. 6.2.18. Handle all assigned functions and responsibilities that affect DoD SAPs or SAP-related matters through approved SAP offices, such as the OSD SAP Coordination Office or the SAP Central Offices of the Military Departments. 6.3. The Under Secretary of Defense (Acquisition, Technology, and Logistics) shall support the ASD(C3I) and the Director, DoD CIFA, in taking necessary measures to require that DoD Components with acquisition, technology, and logistics responsibilities support the implementation of CI policies, including those set forth in PDD/NSC-75 (reference (b)) and those intended to support the protection of DoD research and technology as referenced in DoD Directive 5200.39 (reference (m)) and other related Departmental issuances. 6.4. The Secretaries of the Military Departments shall: 6.4.1. Support the DoD CIFA in implementing PDD/NSC-75 (reference (b)) and integrating the Defense CI Program DoD-wide and overseeing the appropriate functional aspects of the program. 6.4.2. Report all significant CI activities, including investigations and operations, to the Director, DoD CIFA. 6.5. The Chairman of the Joint Chiefs of Staff (CJCS) shall provide combat-support guidance to the Director, DoD CIFA, in coordination with the ASD(C3I), regarding the FPRG. 6.6. The Director, Defense Intelligence Agency, shall provide for the seamless integration of CI collection, production, and joint-operations requirements management with the activities managed and directed by the Director, DoD CIFA. The Joint Staff/J2/CI shall coordinate all joint-CI activities/requirements with the Director, DoD CIFA, and shall coordinate all DoD CIFA-related issues with the CJCS and the Combatant Commanders. 6.7. The Heads of the DoD Components shall: 6.7.1. Support the DoD CIFA on CI operational and implementation matters and shall provide for the conduct, direction, management, coordination, and control of CI activities within their respective components, pursuant to DoD Directive 5240.2 (reference (h)): 6.7.2. Report all significant CI activities regarding the respective DoD Component, including investigations and operations, to the DoD CIFA. 7. RELATIONSHIPS 7.1. In the performance of assigned duties, the Director, DoD CIFA, shall: 7.1.1. Keep the DoD Components fully informed concerning DoD CIFA activities with which they have collateral or related functions. 7.1.2. Exchange information and advice as well as coordinate actions with the DoD Components, as required, to carry out assigned responsibilities and functions. 7.1.3. Use established facilities and services in the Department of Defense and other Government Agencies, whenever practicable, to avoid duplication and achieve maximum efficiency and economy of operations. 7.1.4. Represent the Department of Defense and maintain appropriate liaison, consultation, and coordination with other governmental and non-governmental agencies and CI organizations, as required, to exchange information and advice on programs and activities in the fields of assigned responsibility. 7.2. The Heads of the DoD Components shall coordinate and consult with the Director, DoD CIFA, on matters relating to DoD CIFA operations, functions, and responsibilities. 7.3. The OSD Special Access Program Coordination Office, in coordination with the ASD(C3I) and the SAP Central Offices of the Military Departments, shall be the point of contact for all CI-related SAP issues. 8. AUTHORITIES The Director, DoD CIFA, is specifically delegated the authority to: 8.1. Obtain reports and information consistent with DoD Directive 8910.1 (reference (n)), as necessary, to carry out assigned functions. 8.2. Communicate directly with appropriate representatives of the DoD Components, as necessary to carry out assigned functions, including the transmission of requests for advice and assistance. Communications to the Military Departments shall be transmitted through the Secretaries of the Military Departments, their designees, or as otherwise provided in law or directed by the Secretary of Defense in other DoD issuances. Communications to the Commanders of the Combatant Commands shall be transmitted by the ASD(C3I) through the CJCS. 8.3. Communicate with other Government officials, representatives of the legislative branch, members of the public, and representatives of foreign governments, as appropriate, in carrying out assigned functions. 8.4. This Directive does not supersede any of the provisions of DoD Directive O-5205.7 or DoD Overprint to the NISPOMSUP (references (d) and (e)). 8.5. Exercise the administrative authorities in enclosure 2. 9. ADMINISTRATION 9.1. The Secretaries of the Military Departments shall assign military personnel to the DoD CIFA in accordance with approved authorizations and established procedures for assignment to joint duty. 9.2. Administrative support for the DoD CIFA shall be provided by appropriate DoD Components through inter-Service support agreements in accordance with DoD Instruction 4000.19 and DoD Directive 1400.16 (references (o) and (p)). 10. EFFECTIVE DATE This Directive is effective immediately. Enclosures - 2 E1. References, continued E2. Delegations of Authority E1. ENCLOSURE 1 REFERENCES, continued (e) Department of Defense Overprint to the National Industrial Security Program Operating Manual Supplement, January 14, 1998 (f) Executive Order 12333, "United States Intelligence Activities," December 4, 1981 (g) DoD Directive 5137.1, "Assistant Secretary of Defense (Command, Control, Communications, and Intelligence) (ASD(C3I))," February 12, 1992 (h) DoD Directive 5240.2, "DoD Counterintelligence," May 22, 1997 (i) DoD Directive 5240.1, "DoD Intelligence Activities," April 25, 1988 (j) DoD 5240.1-R, "Procedures Governing the Activities of DoD Intelligence Components that Affect United States Persons," December 1982 (k) Appendix 3 of title 5, United States Code, "Inspector General Act of 1978," as amended (l) DoD Directive 5200.27, "Acquisition of Information Concerning Persons and Organizations not Affiliated with the Department of Defense," January 7, 1980 (m) DoD Directive 5200.39, "Security, Intelligence, and Counterintelligence Support to Acquisition Program Protection," September 10, 1997 (n) DoD Directive 8910.1, "Management and Control of Information Requirements," June 11, 1993 (o) DoD Instruction 4000.19, "Interservice and Intragovernmental Support," August 9, 1995 (p) DoD Directive 1400.16, "Inter-departmental Civilian Personnel Administration Support," October 30, 1970 E2. ENCLOSURE 2 DELEGATIONS OF AUTHORITY E2.1.1. Pursuant to the authority vested in the Secretary of Defense, and subject to the authority, direction, and control of the Secretary of Defense, the ASD(C3I), and in accordance with DoD policies, Directives, and Instructions, the Director, DoD CIFA, or in the absence of the Director, the person acting for the Director, is delegated authority, as required, in the administration and operation of the DoD CIFA to: E184.108.40.206. Perform the following functions in accordance with Executive Order 10450, Executive Order 12333, Executive Order 12968, and DoD Directive 5200.2, as appropriate, to: E220.127.116.11.1. Designate any position in DoD CIFA as a "sensitive" position. E18.104.22.168.2. Authorize, in case of emergency, the appointment of a person to a sensitive position in the DoD CIFA for a limited period of time and for whom a full field investigation or other appropriate investigation, including National Agency Check, has not been completed. E22.214.171.124.3. Authorize the suspension, but not terminate the services of, a DoD CIFA employee in the interest of national security. E126.96.36.199. Authorize and approve: E188.8.131.52.1. Temporary duty travel for military personnel assigned or detailed to the DoD CIFA in accordance with Joint Federal Travel Regulations, Volume 1. E184.108.40.206.2. Travel for DoD CIFA civilian employees in accordance with Joint Travel Regulations, Volume 2. E220.127.116.11.3. Invitational travel to non-DoD employees whose consultative, advisory, or other highly specialized technical service are required in a capacity that is directly related to, or in connection with, DoD CIFA activities, in accordance with Volume 2, Joint Travel Regulations. E18.104.22.168.4. Overtime work for DoD CIFA civilian employees in accordance with 5 U.S.C. Chapter 55, Subpart V, and applicable Office of Personnel Management (OPM) regulations. E22.214.171.124.5. Approve the expenditure of funds available for travel by military personnel assigned or detailed to the DoD CIFA for expenses incident to attendance at meetings of technical, scientific, professional, or other similar organizations in such instances where the approval of the Secretary of Defense, or designee, is required by 37 U.S.C. 412, and 5 U.S.C. 4110 and 4111. E126.96.36.199.6. Develop, establish, and maintain an active and continuing Records Management Program, pursuant to 44 U.S.C. 3102 and DoD Directive 5015.2. E.188.8.131.52.7. Authorize the publication of advertisements, notices, proposals, or other public periodicals, as required for the effective administration of DoD CIFA, consistent with 33 U.S.C. 3702. E184.108.40.206.8. Establish and maintain, for the functions assigned, an appropriate publications system for the promulgation of Directives, Instructions, Publications, and reference documents, and changes thereto, pursuant to the policies and procedures prescribed in DoD 5025.1-M. E220.127.116.11.9. Enter into support and services agreements with the Military Departments, other DoD Components, or other Government Agencies, as required, for the effective and efficient performance of DoD CIFA responsibilities and functions. E18.104.22.168.10. Enter into and administer contracts directly or through a Military Department, a DoD contract administration services component, or other Government Department or Agency, as appropriate, for supplies, equipment, and services required to accomplish the mission of DoD CIFA. To the extent that any law or Executive order specifically limits the exercise of such authority to persons at the Secretarial level of a Military Department, such authority will be exercised by the appropriate Under Secretary or Assistant Secretary of Defense. E22.214.171.124. The Director, DoD CIFA, may redelegate these authorities, as appropriate and in writing, except as otherwise specifically indicated above or as otherwise provided by law or regulation.