DEPARTMENT OF THE NAVY
OFFICE OF THE CHIEF OF NAVAL OPERATIONS
2000 NAVY PENTAGON
WASHINGTON DC 20350-2000
OPNAVINST 3502.8
N46
8 Nov 2017
OPNAV INSTRUCTION 3502.8
From: Chief of Naval Operations
Subj: NAVY MISSION ASSURANCE PROGRAM
Ref: (a) DoD Mission Assurance Strategy of May 2012
(b) DoD Mission Assurance Assessment Program Interim Implementation Framework of
April 2015 (NOTAL)
(c) DoD Manual 3020.45, Volume 1, Defense Critical Infrastructure Program (DCIP):
DoD Mission-Based Critical Asset Identification Process (CAIP), 24 October 2008
(d) DoD Instruction 6055.17 of 13 February 2017
(e) DoD Manual 3020.45, Volume 3, Defense Critical Infrastructure Program (DCIP):
Security Classification Manual (SCM), 15 February 2011
(f) DoD Instruction O-2000.16, Volume 1, 17 November 2016 (FOUO)
Encl: (1) Mission Assurance Risk Management Methodology
(2) Acronyms and Definitions
1. Purpose. To establish Navywide mission assurance (MA) policy and assign specific
responsibilities for implementing reference (a).
2. Background. MA is an integrative framework and a process to protect or ensure the continued
function and resilience of capabilities and assets - including personnel, equipment, facilities,
networks, information and information systems, infrastructure, and supply chains - critical to the
performance of Department of Defense (DoD) mission-essential functions (MEF) in any operating
environment or condition. In the past, the DoD and the Navy have regarded MA as the
aggregation of a number of protection-focused programs, each operating independently. This
characterization did not support a comprehensive, integrated approach to risk management (RM)
and has resulted in a lack of synergy, unnecessary duplication, and inefficiencies across programs.
Navy units must assess and identify risk to missions and assets and develop plans to manage risk as
an integral part of the Navy planning process. Per references (a) through (f), the MA RM
methodology prescribed in enclosure (1) provides a uniform approach for the assessment and
management of risk through protection programs and activities at the installation and command
levels Navywide. This instruction builds upon these efforts, recognizing the need for a
comprehensive, integrated MA governance structure and supporting processes to protect the force,
systematically manage enterprise risk, synchronize complementary protection-related programs
and activities, and enable the prioritization of investments to ensure mission performance.
