“WhatWorks in OPSEC” profile: Ian Paul Titmuss

Name: Ian Paul Titmuss
Industry: Security Consulting
Practices OPSEC in: Comunications and Security

 

How often do you review in-place countermeasures for effectiveness?
On a weekly basis depending and threat assessments

 

Do you have other duties besides OPSEC and what percentage of time is devoted to OPSEC?
Communications, IT Security, Physical Security Information Assurance, Security Risk Management

 

How often to you perform Open Source reviews against your site/location/mission/organization?
On a weekly basis depending and threat assessments

 

Do you feel that having a well established network of OPSEC contacts is important? Why or why not?
Absolutely, because as OPSEC’rs you need to understand different ways of distributing information and deffering methods of approach to OPSEC.

 

What is the toughest part of implementing OPSEC at your job station? How have you overcome these challenges?
Dealing with higher levels and selling OPSEC as important, largely because it is for unclassified information only.

 

How did you become interested in OPSEC?
Reiterate that Terrorism uses Unclassified Critical information not Nationally classified information.

 

Do you feedback your survey results to the general populace through OPSEC awareness? (demonstrate and educate)
Yes, Each 6 months I present a new forum and provide feedback.

 

What has worked for you when attempting to gain leadership support for the OPSEC program?
Reiterate that Terrorism uses Unclassified Critical information not Nationally classified information

 

What type of mass OPSEC awareness has worked for you?
Posters and forums

 

Have you personally written a Critical Information List? How did you distribute the information to concerned parties/groups?
Yes, which has been endorsed by higher level staff. Information is distributed during forums

 

What method for creating Critical Information Lists works best for you?
Simply using an Exel spreadsheet is the easiest and simplest method I’ve found

 

What has worked for you for giving OPSEC training?
I use an IOSS DVD or a DICE Man DVD then open forum

 

Do you have any advice for new OPSEC professionals?
Make sure you network. Don’t try and do it all yourself. You will miss out on the years of experience around you. Network Network Network

 

Do you have any thoughts on OPSEC in non-government, non-military settings?
I believe all businesses, schools, non-government, non military environments could benefit by implementing and OPSEC program. It would then not be treated as just another government program.

 

Back to the list