As prescribed in 3439.702, include the following provision in solicitations when the offeror's employees would have access to Department-controlled facilities or space, or when the work (wherever located) would involve the design, operation, repair, or maintenance of information systems and access to sensitive but unclassified information:
(a) The offeror and any of its future subcontractors will have to comply with Department security policy requirements as set forth in the “Bidder's Security Package: Security Requirements for Contractors Doing Business with the Department of Education” at: http://www.ed.gov/fund/contract/about/bsp.html.
(b) All contractor employees must undergo personnel security screening if they will be employed for 30 days or more, in accordance with Departmental Directive OM:5-101, “Contractor Employee Personnel Security Screenings,” available at: http://www.ed.gov/fund/contract/about/acs/acsom5101.doc.
(c) The offeror shall indicate the following employee positions it anticipates to employ in performance of this contract and their proposed risk levels based on the guidance provided in Appendix I of Departmental Directive OM:5-101:
High Risk (HR): [Specify HR positions.].
Moderate Risk (MR): [Specify MR positions.].
Low Risk (LR): [Specify LR positions.].
(d) In the event the Department disagrees with a proposed risk level assignment, the issue shall be subject to negotiation. However, if no agreement is reached, the Department's risk level assignment shall be used. The type of screening and the timing of the screening will depend upon the nature of the contractor position, the type of data to be accessed, and the type of information technology (IT) system access required. Personnel security screenings will be commensurate with the risk and magnitude of harm the individual could cause.
(End of provision)