Feeds

Spooks and techies to be vetted for their online networks

Who exactly is this smiley character?

Secure remote control for conventional and virtual desktops

Be careful who your online friends are, as they could well damage your career. That is the slightly chilling warning sent to us this week by a reader who works at a senior level providing IT support on a range of Government projects.

He writes: "I'm not clear on what the official line is on Facebook regarding vetting but we are being told to remove ourselves from social networking sites if we are going to Developed Vetting (DV or Positive Vetting) clearance. I think this is mainly because the interviewers are asking candidates to justify their relationship with everyone on their 'friends' list".

He adds: "Social engineering is a complicated art for the boys south of the river and I don't profess to understand all of their knowledge/paranoia. Next they'll be going through our address books. I understand they need to be cautious about who they allow access to top level information but I think there are better ways of establishing trust than this."

In one sense, this is nothing new. If you would like to work on a secure government project, expect your life to come under scrutiny: the more secure the project, the more intense the scrutiny; and at certain levels, your friends and acquaintances are bound to be called into question.

There are, however, two aspects to this process that should give pause for thought. First is the way we use sites such as Facebook, and the ease with which (some of us) click on the "friend" button for individuals who, in real life, we would never describe as anything more than casual acquaintances.

The sad news for anoraks is that research suggests that online promiscuity does not, in the end, lead to us having more friends than we would have in the real world.

How far do the Security Services take this into consideration? Do they downweight online friendship? Or do they take it at face value?

We put these questions to a number of government departments, including the Home Office, who are responsible for providing information about the activities of the Security Service (MI5). The not wholly unexpected answer, given in various shapes and guises, was: "We do not comment on security issues."

Second is the tendency for managers – and in this context, spooks are not very different from information managers - to use the tools available to them. A hot topic within the counter-terror community nowadays is "netwar", a form of social and political activism that is defined by the networked organizational structure of its practitioners.

The essential guide to IT transformation

More from The Register

next story
Hello, police, El Reg here. Are we a bunch of terrorists now?
Do Brits risk arrest for watching beheading video nasty? We asked the fuzz
UK fuzz want PINCODES on ALL mobile phones
Met Police calls for mandatory passwords on all new mobes
Munich considers dumping Linux for ... GULP ... Windows!
Give a penguinista a hug, the Outlook's not good for open source's poster child
EU justice chief blasts Google on 'right to be forgotten'
Don't pretend it's a freedom of speech issue – interim commish
Detroit losing MILLIONS because it buys CHEAP BATTERIES – report
Man at hardware store was right: name brands DO last longer
Snowden on NSA's MonsterMind TERROR: It may trigger cyberwar
Plus: Syria's internet going down? That was a US cock-up
UK government accused of hiding TRUTH about Universal Credit fiasco
'Reset rating keeps secrets on one-dole-to-rule-them-all plan', say MPs
Caught red-handed: UK cops, PCSOs, specials behaving badly… on social media
No Mr Fuzz, don't ask a crime victim to be your pal on Facebook
e-Borders fiasco: Brits stung for £224m after US IT giant sues UK govt
Defeat to Raytheon branded 'catastrophic result'
Yes, but what are your plans if a DRAGON attacks?
Local UK gov outs most ridiculous FoI requests...
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 10 endpoint backup mistakes
Avoid the ten endpoint backup mistakes to ensure that your critical corporate data is protected and end user productivity is improved.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Rethinking backup and recovery in the modern data center
Combining intelligence, operational analytics, and automation to enable efficient, data-driven IT organizations using the HP ABR approach.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.