The Department of Energy (DOE) released the Management of the DOE Intelligence Enterprise Order in late February, replacing the 1992 version, which focused only on foreign intelligence.

The revised order expands guidance beyond the previously narrow scope to include all intelligence-related missions – including cyber intelligence, insider threat program, foreign national access program and strategic intelligence partnership program – and governs all DOE organizations, sites, facilities, activities and contractors. Key additions include:

• Insider Threat Program – formalized by post-2011 incidents
• Cyber intelligence – formally designated as a core mission area
• Foreign National Access (FNA) Program – includes a detailed escalation/dispute resolution process
• Strategic Intelligence Partnership Program (SIPP) – guides reimbursable intelligence-related work with external partners.

The order also establishes the DOE Office of Intelligence and Counterintelligence (IN) as the Officially Designated Federal Security Authority (ODFSA). Functions that did not exist or had not been formalized in the earlier version include accrediting Sensitive Compartmented Information (SCI), managing DOE Sensitive Compartmented Information Facilities (SCIFs) and serving as the Principal Authorizing Official for all IT systems covered by the Intelligence Community Directive (ICD) 503.

Contractor Requirements Document

The most significant federal contractor impact is the addition of the mandatory, standalone Contractor Requirements Document (CRD), which must be incorporated into all existing and future laboratory, plant and site management contracts. The framework takes a three-tiered approach:

All Contractors

Regardless of contract type, all contractors must:

• Conform to the National Security Act of 1947, DOE Procedures for Intelligence Activities and other related laws and regulations
• Develop customized security-related standards, practices and controls in coordination with the contracting officer (CO) and designated DOE representatives
• Cooperate with any Inspector General or Government Accountability Office inquiries or investigations and provide requested information on a need-to-know basis
• Support and participate in the Department’s Insider Threat Programs.

Prime contractors must flow down requirements to subcontractors but remain responsible for compliance regardless of who performs the work.

M&O Contractors

CRD incorporation is mandatory and non-negotiable for M&O contracts. The CO incorporates the document without alteration — no FAR exceptions apply. However, contractors must provide cost, funding, schedule and technical performance impacts on existing contracts and feedback on the tailored requirements.

Non-M&O Contractors

Non-M&O contractors and the contracting officer negotiate CRD incorporation subject to FAR limitations. Similarly, non-M&O contractors must provide cost, funding, schedule and technical performance impacts. If negotiations fail, the CO escalates the decision to the Head of Contracting Activity, the Headquarters Program Office and General Counsel to determine the outcome.

CONTRACTOR IMPLICATIONS

Incorporating the CRD will drive contract modifications and renegotiations, affecting contract costs, schedule and performance requirements. Future solicitations requiring a CRD will add a layer to the proposal response process. Contractors can anticipate increased compliance costs to develop and maintain robust due diligence processes, such as documenting all foreign engagements and interactions and implementing a multi-layered background investigation protocol for all investors, partners, employees and subcontractors. Strategic recruitment, staffing and training will also increase overhead costs.

NEXT STEPS

Contractors should proactively conduct self-assessments ahead of CRD incorporation, audit subcontractor compliance status, and evaluate and revise foreign interaction documentation procedures. Contractors can reduce implementation risks by investing in robust compliance infrastructure such as training programs, enhanced background investigation protocols and facilities for handling SCI.

Effective February 23, the guidance did not i provide timelines for CRD incorporation. For existing contracts, the document will likely be included in the next modification or option renewal. For new procurements or contract recompetitions, the CRD will add a new requirements section. Contractors should engage with contracting officers early to clarify timelines, assess existing contract terms and identify potential cost, schedule and performance impacts ahead of formal incorporation.