1 / 34

Security…and Other Horror Stories

Collection of alarming adventures and tricks of the trade in security management. Real-life examples and lessons learned in defense and various industries.

cfournier
Télécharger la présentation

Security…and Other Horror Stories

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Security…andOther Horror Stories FISWG 9 July 2014 Helen MacDonald H3MacD Consulting

  2. About me… • Over 35 years in Defense • Over 25 years in Security Management • six different companies • numerous different groups and divisions • companies purchased by larger corporations • A lot of first-hand personal experiences to choose from • Tricks of the trade

  3. DSS – Techniques Used • Peppering: Visitors asking the same question in different styles or one visitor asking the same question to multiple U.S. contractor employees • Wandering Visitor: The visitor uses the distraction provided by a large delegation to slip away, out of the control of the escort • Divide and Conquer: Visitors take the U.S. team members into different areas to discuss issues in order to deprive the U.S. person of his safety net of assistance in answering questions • Switch Visitors: A collector added to the group without leaving enough time for a background check on the new visitor • Bait and Switch: The visitors say they are coming to discuss business that is acceptable for discussion, but after they arrive their agenda switches to different questions and discussion topics • Distraught Visitor: When the visitor’s questions are not answered he/she acts insulted or creates an uncomfortable scene in an attempt to psychologically coerce information from the target

  4. The Alarming Adventures of an FSO

  5. The China Connection • Cleared Employee: Did “Jim” (another cleared employee) tell you that he was getting married? • Me: No • Cleared Employee: Well…he’s getting married to somebody from China! • I have a sit-down with “Jim” and follow through with required reports to DSS and FBI

  6. The Tale of The Teaming Agreement • Foreign friendly country teams with my company • Unclassified contract • Limited export terms: Country XUS; USCountry X • Follow procedures on site • Submit proposal • Exit question • Question via email upon return to homeland • Program Manager’s feedback

  7. BD Attends an Industry Conference • Suspicious person collecting stacks of data from each exhibit • No badge • BD employee approaches him • “Left badge in room” • BD employee takes him to desk • Not registered • Gets name • BD reports to me upon return • Reports to DSS and FBI • Kitchen access

  8. Food Court Folly • Male employee goes to lunch at nearby mall • Approached in Food Court by female foreign national and sits with him • Male employee returns next day to mall • Female foreign national is waiting at mall entrance he used day before to befriend him • Employee reports incident to me

  9. Visit from a Friendly Nation • Export Control awaits permission for visitors • Visitors waiting in lobby • Approval arrives • Widget placement • What I do • What they do

  10. Legend of the Last Laugh • Call from employee about another who left suspiciously in the middle of the work day • 9-1-1 call and management • Bomb Squad • The rest of the story LAST LAUGH

  11. “I’m married???” • Checked on employee in JPAS • Noticed “single” listed • Asked him to verify as I’ve heard him talk about his wife • The rest of the story…

  12. Quiz • What could go wrong in this scenario?

  13. The Saga of The Uninvited Guest • Unclassified meeting on classified program • All procedures followed for foreign “friendly” visitors • Replacement visitor • No access allowed • Requests to speak to my boss • Demands to speak to management • Epic temper tantrum

  14. Government-to-Government Goof • US Gov’t  UK Gov’t • Meeting • UK needs classified document • Handoff?

  15. Quiz • What’s wrong with this scenario?

  16. “¡Hola! ¿Que?” • I’m visiting a division and am working late • See male Cleaning Crew member wearing badge with female’s photo • I ask to see ID • I ask for proof of U.S. Citizenship or Green Card • Not only not a citizen, but cannot produce a green card either!

  17. Surprise Visit from Police • New contractor hired from California • Settles in and starts dating receptionist • Police visit without notice • Escort out • Check vehicle • How he was nabbed!

  18. Faithful Foreign Friends • You can always find a renegade location that doesn’t see why there’s a problem allowing international employees unfettered access if they’re wearing a company badge and have signed a company non-disclosure agreement A company badge means I can access anything I want!

  19. An Afternoon inMexico City • 3:00 p.m. at the airport • Reputable cab • Stuck in traffic • Surprise through the window • Rolex, jewelry

  20. Quiz • What did the cab driver do?

  21. The Riddle of The Vanishing Tools • Technician employee keeps noticing tools missing from cage • They show back up several days later, but then another tool goes missing continued…

  22. Merry Christmas! • Company holiday party • Missing computer & related software • Badge access • Computer “ping” time • SOLVED!! • The rest of the story…

  23. The Case of The Company Purchase • Small privately-owned defense contractor • Bought by larger organization • Corporate FSO doesn’t report to DSS • New corporation = new BoD • Chairman = dual citizen

  24. The Mystery of The Misbehaving Widget • Foreign Visitor • Export Control approvals to share demonstration • Widget doesn’t work • Engineers break open the widget right there in the conference room to see what the problem is

  25. Quiz • What’s wrong with this scenario?

  26. “Tag! You’re it!” • China expat now cleared US National • Marries Chinese national • Can she work here? • He leaves • She remains • Goes to China for “surgery”

  27. The Approved Export Falls Apart • Export needs to be hand-carried • All export approvals in place • Eager, inexperienced employee • Checks out with ICE desk at Orlando airport • Upon return, lands in New York • Late for connecting flight • Checks in with ICE desk upon arrival at Orlando airport

  28. Quiz • What’s wrong with this scenario?

  29. The FSO’s PCL

  30. Why do people hesitate to report? • Don’t want to appear paranoid—there is a difference between being paranoid and being aware • Don’t want to get involved • Afraid to challenge people • Feel supervisor should report it • Feel they should mind their own business • Fear of being accused of blowing things out of proportion • Fear of confrontation • Conflict and Confidentiality • No one will trust me” • Disbelief that it is happening

  31. Lessons Learned • CREATE TRUST: Earn your employees’ trust by example • EDUCATE: Use every opportunity you can to coach employees • KEEP AN OPEN DOOR: Always keep your door and your mind open to employees • BE AN ACTIVE LISTENER: Pay attention to the small details and to what you hear in hall-talk • WORK WELL WITH OTHERS: Management, IT, Export Control, HR, BD, Technicians, Facilities, Purchasing… • QUESTION… QUESTION… QUESTION: Trust your gut! Question everything that makes the hair on the back of your neck stand up.

  32. Update: The China Connection • The happy couple decided to adopt a baby • Went to China • Came back with a baby

  33. About H3MacD… • Over 25 years in Security Management • H3MacD Consulting formed this year • Basic and Tailored Security Plans • FSO Assistance and Training • Start-Ups • Interactive Employee Briefings and Training • In-Depth Self-Inspections • Proven SCR Program • Personnel Management • Coordination of Visits by Industry Speakers, etc. • Closed and Restricted Areas • Effective DSS Audit Preparation and Representation

  34. Questions?

More Related