Also in this playlist...
This transcript is automatically generated
You've probably never think about though it stems from the scandal swirling around the NSA weaker Edwards -- in -- to have the latest on that in just a moment.
But whether you are an employee or the -- Trustworthy your IT department is -- shining a new spotlight on -- system administrators.
Might actually be the biggest threat to company's security and to yours you won't believe what some companies had -- -- I T staffers plotting revenge.
Joining me now -- former NF.
Intelligence officer John Schindler thank you so much for coming on the show.
We certainly appreciate -- doing.
-- computers as security expert says that they are the scariest threat.
Two systems that they have -- like access to the system they -- is that an overstatement Eric.
Is it really that.
If it's an overstatement it's not by much I mean look we all of us think primarily in terms of physical security.
And that's huge and how we how you get on the systems but the reality is you're says that -- enforce.
-- the critical vulnerability they if they go bad they are the worst sort of insider threat any company any firm -- any intelligence agency can possibly face.
Yet I read this one story.
About a -- that got fired and it held hostage the password to -- entire system for almost two weeks.
How protect yourself from something like that because -- is our.
Inside a company of course the person is ahead of the IT knows more about the computer system and even -- I mean that's their expertise that's their job.
And that's why they're there and these things -- much much more than companies talk about because it's not flattering to a public image when these things get revealed.
Look the reality is.
The easiest way to protect against these things is to be more judicious about who you let it become -- -- administrators.
And that sounds glib in light of what mr.
stone is in the process of doing but at this truth really is that simple.
Look at NSA through use of frankly it appears shoddy background investigations to contractors.
Has found itself in a really tight situation -- -- That they can't unravel very quickly but this this threat exists actually everywhere we all put a tremendous amount of faith.
In our IT workforce -- administrators.
Because they are to be critical link and if one of them goes bad you've got a terrible problem.
These simple answer is keep the bad people out of your company out of your firm out of your intelligence service you don't really -- first.
That's because now we're hearing reports that -- and it went to work for Booz Allen specifically.
So that he could get inside the NSA we don't know if that's true or not but that was the latest wrinkle well that was revealed today he he said he said that himself so I see no reason not to -- -- at face value at least on that claim.
And and a timeline seems right this is this is the nightmare scenario where someone who is rather steal the ninety.
Gets himself in position of tremendous access.
Even though frankly he had filled out some of his security clearance forms improperly so what -- you -- your lie detector test for something I mean what can -- yeah sort of playing whether he had.
He was undoubtedly.
Polygraph because of the way NSA like CIA if you beat top secret code word clearance at NSA you have been polygraphed.
But please keep in mind they're asking you questions about ties to foreign.
Entities they're asking about criminal background.
They're asking about really obvious red flags.
-- smaller red flags might not get -- and the reality is the US government unlike say during the Cold War really doesn't ask people.
Maybe some questions they should I mean we.
You know if we don't want jihadist obviously -- neo Nazi is getting top secret clearances.
But we don't feel I'm doing IT departments got up before he ran out of time I wanna ask you what can you do if you are an employee at work because when I think about and even when I locked myself out of the system and in your calling it you're giving your gas were to -- -- -- it's very clear.
When you give them your password or not that they have the ability.
To go inside anything you have so.
How do you protect yourself at work.
Well one at a very basic level I wouldn't conduct any really important personal business on any computer system that's not personally yours that should be common sense but I know we all do it sometimes.
And the second of all is to simply be vigilant no one likes to think hey the guy in the cubicle over down a hallway -- -- the birthday party for.
It is is he is our problem there no one.
-- a human level wants to think that I used to work counterintelligence and every single spy case that I was any way involved in.
Without exception you talked of their co workers after.
Every single person said well you you know he was a whole body was a strange but I didn't wanna say -- -- because no one wants to think that yeah.
-- -- some people are more than just strange it's a free country to be strange lot of stress people out there at nine tonight plus percent of them don't do anything illegal or wrong.
-- we got in case shows.
That when he put this kind of trust and people you really need to have a clear sense of who they are and what their motivations -- -- John consequences can be disastrous thing you so much for coming on the show are great step angry at me and I thank you.
Filter by section