Operations Security

NCSC executes the roles and responsibilities of the National Operations Security (OPSEC) Program Office, as described in National Security Presidential Memorandum 28 (NSPM-28) and supports department and agency implementation of OPSEC programs. NCSC/ETD provides additional guidance, works with all Executive Branch departments and agencies to develop their programs, and provides program development, training, and awareness materials.

As set forth in NSPM-28, the National Operations Security Program (NOP) supports the establishment, implementation, and standardization of stakeholder OPSEC programs across the Executive Branch of the U.S. Government (USG) and, as appropriate, beyond to trusted partners.

NSPM-28 requires all Executive Branch departments and agencies to implement OPSEC capabilities that identify and protect their most critical assets, identify and mitigate vulnerabilities, consider foreign adversarial threats in their organization’s risk management activities, and apply sufficient threat mitigation practices to counter the threat. NOP requirements are set forth in NSPM-28.

National OPSEC Awareness Month

NEW!  National OPSEC Awareness Month Changed to May, starting 2025!

January 2024 —

• National OPSEC Awareness Month Flyer 2024

Enterprise Risk Mitigation

October 2023 —

• Enterprise Risk Mitigation Blueprint for Non-Intelligence Agencies

OPSEC Bulletins

May 2024 —

• Enterprise Threat Bulletin – Bystander Engagement
• Enterprise Threat Bulletin – Cloud Computing: Risk Considerations

April 2024 —

• Enterprise Threat Bulletin – Conference Tracking Tags: Risk Considerations

March 2023 —

• OPSEC Advisory – TikTok Concerns and Vulnerabilities

NOP Authorities & Policies

• NSPM – 28 Requirements

  Please Note: National Security Presidential Memorandum (NSPM) 28 is Unclassified but not approved for public release and therefore cannot be posted on this website. Stakeholders within the US government may reach out to This email address is being protected from spambots. You need JavaScript enabled to view it. to obtain a copy.

• NCSC Memo – National Security Operations Security

OPSEC Training

• Registrar: This email address is being protected from spambots. You need JavaScript enabled to view it.
• 2026 OPSEC Training Schedule
• 2025 OPSEC Training Schedule
• 2024 OPSEC Training Schedule
• OPSEC for All

OPSEC Resources & Templates

• Critical Information List (CIL) Example
• OPSEC Analysis Resources
• OPSEC for Publicly Facing Websites Checklist
• OPSEC Program Manager Appointment Letter Sample
• OPSEC Program Continuity Book (Table of Contents) Example
• OPSEC Program Plan Template 1
• OPSEC Program Plan Template 2
• OPSEC Program Plan Template 3
• OPSEC Program Policy Checklist
• OPSEC Program Policy Template
• OPSEC Program Self-Evaluation Checklist
• OPSEC Working Group Appointment Letter Template
• OPSEC Working Group Charter Template
• NCSC Memo on National Operations Security Program
• OPSEC Training Standards NOP PMO ADVISORY
• NSPM 28 List Of Requirements Appendix A
• OPSEC Awareness Month Messaging Champion Communications Packet for Universities/Colleges

OPSEC Posters

• World for Targets
• Two Faces
• Trash
• The World is Always Watching
• Talk 2 Much
• Release Your Inner Dragon
• Identify vulnerabilities
• Fleet Tweets
• Combat Boots
• Career Day
• Advertising Family
• Eye Chart
• Insider Threat
• Eagle
• Critical Information