Name: Keith W. Harra Jr.
Industry: Air FOrce
Practices OPSEC in: USA
Works With: Military- Active Duty/Guard/Reserve
Have you ever attended a formal OPSEC course of instruction?
Yes, more than one by IOSS, JIOWC/JOSC, US Air Force
How often do you review in-place countermeasures for effectiveness?
AF Level program manager, personally don’t review countermeasures.
Do you have other duties besides OPSEC and what percentage of time is devoted to OPSEC?
Yes, about 60%.
How often to you perform Open Source reviews against your site/location/mission/organization?
Do you feel that having a well established network of OPSEC contacts is important? Why or why not?
Yes, if needed they can greatly assist with OPSEC issues.
What is the toughest part of implementing OPSEC at your job station? How have you overcome these challenges?
Real Senior Leadership support
How did you become interested in OPSEC?
Assigned as AF OPSEC PM
Do you feedback your survey results to the general populace through OPSEC awareness? (demonstrate and educate)
How do you promote an OPSEC/Security “Culture” at your site?
From where do you receive your OPSEC awareness material?
Interagency OPSEC Support Staff (IOSS)
Have you personally written a Critical Information List? How did you distribute the information to concerned parties/groups?
Yes and No, I was responsible for the CIL but a working group actually wrote it. Once signed it was sent out to all organization members and posted throughout the organization.
What method for creating Critical Information Lists works best for you?
Bringing in SME’s from all organization activities to assist in creating the CIL.
What has worked for you for giving OPSEC training?
Individual training works best, but isn’t always practical.
Do you have any other advice for your OPSEC peers?
Don’t forget about indicators. OPSEC is more than awareness training and a CIL. You must consider what signature, profiles are associated with you mission and protect against or use to your advantage potential adversary exlpoitation.