§ 105.255 - Security measures for access control.  


Latest version.
  • § 105.255 Security measures for access control.

    (a) General. The facility owner or operator must ensure the implementation of security measures to:

    (1) Deter the unauthorized introduction of dangerous substances and devices, including any device intended to damage or destroy persons, vessels, facilities, or ports;

    (2) Secure dangerous substances and devices that are authorized by the owner or operator to be on the facility;

    (3) Control access to the facility; and

    (4) Prevent an unescorted individual from entering an area of the facility that is designated as a secure area unless the individual holds a duly issued TWIC and is authorized to be in the area. Individuals seeking unescorted access to a secure area in a facility in Risk Group A must pass electronic TWIC inspection and those seeking unescorted access to a secure area in a facility not in Risk Group A must pass either electronic TWIC inspection or visual TWIC inspection.

    (b) The facility owner or operator must ensure that the following are specified:

    (1) The locations where restrictions or prohibitions that prevent unauthorized access are applied for each MARSEC Level, including those points where TWIC access control provisions will be applied. Each location allowing means of access to the facility must be addressed;

    (2) The types of restrictions or prohibitions to be applied and the means of enforcing them;

    (3) The means used to establish the identity of individuals not in possession of a TWIC, in accordance with § 101.515 of this subchapter, and procedures for escorting them;

    (4) Procedures for identifying authorized and unauthorized persons at any MARSEC level; and

    (5) The locations where persons, personal effects and vehicle screenings are to be conducted. The designated screening areas should be covered to provide for continuous operations regardless of the weather conditions.

    (c) The facility owner or operator must ensure that a TWIC program is implemented as follows:

    (1) All persons seeking unescorted access to secure areas must present their TWIC for inspection before being allowed unescorted access, in accordance with § 101.514 of this subchapter. Inspection must include:

    (i) A match of the photo on the TWIC to the individual presenting the TWIC;

    (ii) Verification that the TWIC has not expired; and

    (iii) A visual check of the various security features present on the card to determine whether the TWIC has been tampered with or forged.

    (2) If an individual cannot present a TWIC because it has been lost, damaged or stolen, and he or she has previously been granted unescorted access to the facility and is known to have had a valid TWIC, the individual may be given unescorted access to secure areas for a period of no longer than 7 consecutive calendar days if:

    (i) The individual has reported the TWIC as lost, damaged, or stolen to TSA as required in 49 CFR 1572.19(f);

    (ii) The individual can present another identification credential that meets the requirements of § 101.515 of this subchapter; and

    (iii) There are no other suspicious circumstances associated with the individual's claim of loss or theft.

    (3) If an individual cannot present his or her TWIC for any other reason than outlined in paragraph (c)(2) of this section, he or she may not be granted unescorted access to the secure area. The individual must be under escort, as that term is defined in part 101 of this subchapter, at all times when inside of a secure area.

    (4) With the exception of persons granted access according to paragraph (c)(2) of this section, all persons granted unescorted access to secure areas of the facility must be able to produce his or her TWIC upon request.

    (5) There must be disciplinary measures in place to prevent fraud and abuse.

    (6) The facility's TWIC program should be coordinated, when practicable, with identification and TWIC access control measures of vessels or other transportation conveyances that use the facility.

    (d) If the facility owner or operator uses a separate identification system, ensure that it complies and is coordinated with TWIC provisions in this part.

    (e) The facility owner or operator must

    establish in the approved Facility Security Plan (FSP) the frequency of application of any access controls, particularly if they are to be applied on a random or occasional basis.

    (

    f

    d) MARSEC Level 1. The facility owner or operator must ensure the following security measures are implemented at the facility:

    (1) Implement a TWIC Program as set out in

    paragraph (c) of this section.

    subpart E of part 101 of this subchapter, as applicable, and in accordance with the facility's assigned Risk Group, as set out in § 105.253.

    (2) Screen persons, baggage (including carry-on items), personal effects, and vehicles, for dangerous substances and devices at the rate specified in the approved FSP, excluding government-owned vehicles on official business when government personnel present identification credentials for entry;

    (3) Conspicuously post signs that describe security measures currently in effect and clearly state that:

    (i) Entering the facility is deemed valid consent to screening or inspection; and

    (ii) Failure to consent or submit to screening or inspection will result in denial or revocation of authorization to enter.

    (4) Check the identification of any person not holding a TWIC and seeking entry to the facility, including vessel passengers, vendors, personnel duly authorized by the cognizant government authorities, and visitors. This check

    shall

    must include confirming the reason for boarding by examining at least one of the following:

    (i) Joining instructions;

    (ii) Passenger tickets;

    (iii) Boarding passes;

    (iv) Work orders, pilot orders, or surveyor orders;

    (v) Government identification; or

    (vi) Visitor badges issued in accordance with an identification system implemented under

    paragraph (d) of this section

    (5) Deny or revoke a person's authorization to be on the facility if the person is unable or unwilling, upon the request of facility personnel or a law enforcement officer, to establish his or her identity in accordance with this part or to account for his or her presence. Any such incident must be reported in compliance with this part;

    (6) Designate restricted areas and provide appropriate access controls for these areas;

    (7) Identify access points that must be secured or attended to deter unauthorized access;

    (8) Deter unauthorized access to the facility and to designated restricted areas within the facility;

    (9) Screen by hand or device, such as x-ray, all unaccompanied baggage prior to loading onto a vessel; and

    (10) Secure unaccompanied baggage after screening in a designated restricted area and maintain security control during transfers between the facility and a vessel.

    (

    g

    e) MARSEC Level 2. In addition to the security measures required for MARSEC Level 1 in this section, at MARSEC Level 2, the facility owner or operator must ensure the implementation of additional security measures, as specified for MARSEC Level 2 in their approved FSP. These additional security measures may include:

    (1) Increasing the frequency and detail of the screening of persons, baggage, and personal effects for dangerous substances and devices entering the facility;

    (2) X-ray screening of all unaccompanied baggage;

    (3) Assigning additional personnel to guard access points and patrol the perimeter of the facility to deter unauthorized access;

    (4) Limiting the number of access points to the facility by closing and securing some access points and providing physical barriers to impede movement through the remaining access points;

    (5) Denying access to visitors who do not have a verified destination;

    (6) Deterring waterside access to the facility, which may include, using waterborne patrols to enhance security around the facility;

    or

    (7) Except for government-owned vehicles on official business when government personnel present identification credentials for entry, screening vehicles and their contents for dangerous substances and devices at the rate specified for MARSEC Level 2 in the approved FSP; or

    (8) Implementing additional electronic TWIC inspection requirements, as required by § 105.

    (h

    (f) MARSEC Level 3. In addition to the security measures required for MARSEC Level 1 and MARSEC Level 2, at MARSEC level 3, the facility owner or operator must ensure the implementation of additional security measures, as specified for MARSEC Level 3 in their approved FSP. These additional security measures may include:

    (1) Screening all persons, baggage, and personal effects for dangerous substances and devices;

    (2) Performing one or more of the following on unaccompanied baggage:

    (i) Screen unaccompanied baggage more extensively; for example, x-raying from two or more angles;

    (ii) Prepare to restrict or suspend handling of unaccompanied baggage; or

    (iii) Refuse to accept unaccompanied baggage.

    (3) Being prepared to cooperate with responders and facilities;

    (4) Granting access to only those responding to the security incident or threat thereof;

    (5) Suspending access to the facility;

    (6) Suspending cargo operations;

    (7) Evacuating the facility;

    (8) Restricting pedestrian or vehicular movement on the grounds of the facility;

    or

    (9) Increasing security patrols within the facility; or

    (10) Implementing additional electronic TWIC inspection requirements, as required by § 105.253, and by subchapter E of part 101 of this subchapter, if relevant.

    [USCG-2006-24196, 72 FR 3583, Jan. 25, 2007, as amended by USCG-2007-28915, 81 FR 57712, Aug. 23, 2016]