Provide SJPC with support in maintaining regulatory compliance relating to regulations under the jurisdiction of the U.S. Coast Guard (and with security and risk mitigation initiatives). Perform independent audit of Facility Security Plan (FSP), as required by the Maritime Transportation Security Act (MTSA), NIST Cybersecurity Framework, USCG defined cybersecurity guidance, and supporting regulations, government agency policies, and guidance issued by applicable authorities. • Conduct Annual Mandatory Maritime Security Audit. • Ensure SJPC facilities remain in compliance with Federal Security Regulations. • Prepare Facility Security Officer for Annual Coast Guard Inspections. • Conduct Facility Security Plan and Facility Security Assessment (FSA) review; recommend changes. • Review regulatory requirements with FSO and requirements of FSO’s plan. • Review any USCG findings, comments, or issues for most recent spot and annual inspections. • Review any recent security incidents or concerns and their relevance to the FSP. • Review the current risk environment. • Review current security and operational processes, procedures, documentation, and physical facilities, to access alignment and consistency with Facility Security Plan (FSP). • Review physical facilities for vulnerabilities and correlation to FSA and FSP. • Review knowledge level and procedures with security guards, including TWIC and personnel/vehicle screening procedures and techniques. • Review cybersecurity including physical, procedural, personnel, and documentation aspects. • Review all security records required by 33 CFR 105 for completeness, timeliness, and availability. • Assist in minor amendments to the FSP requiring submission to the Coast Guard. • Prepare all required audit documentation for FSO in order to maintain in full compliance; forwarded to FSO within 10 days of visit. • Conduct drills. • Conduct an annual exercise of the Facility Security Plan. • Provide any other Coast Guard Compliance Consultative Services as requested by SJPC during the audit visit free of charge. • Deliver an Audit Report summarizing all issues, observations, and recommendations sent within 30 days of visit. • Ensure cybersecurity requirements for FSA and FSP are in compliance. • Provide an audit letter and submit to the Coast Guard on behalf of the Facility Security Officer. • Provide an audit package that includes: a detailed audit check list on items inspected with notes, an audit report that includes observations with recommendations to correct or apply best practices, a drill, an exercise and minor FSP amendment documentation if needed.
