Don't let small security mistakes cause big issues for your company When working in a secure space or anywhere that is concerned about company security, there are some security procedures employees often don’t follow. While these mistakes may seem insignificant, they create vulnerabilities in company security, and the more vulnerabilities there are, the more an adversary can take advantage … [Read more...] about Common Security Mistakes and How to Address Them
What is TSCM Testing?
An overview of Technical Surveillance Countermeasure testing and its role in SCIF and SAPF security A Technical Surveillance Countermeasure (TSCM) is a sweep through a secure facility searching for bugs or other types of electronic surveillance. This is a highly specialized test that many SCIF and SAPFs don’t require, but for those that do, the team performing the sweep needs to be highly … [Read more...] about What is TSCM Testing?
A Shift Is Coming in the TEMPEST World
An Adamo security expert explains what the DIA RF memo says about how we’re handling TEMPEST concerns by Phil Chance In November 2022—seemingly out of the blue—the Defense Intelligence Agency (DIA) issued a memo declaring all SCIFS, whether currently accredited or not, and all future SCIFS will be required to have approved Radio Frequency (RF) shielding on all floors, ceilings, walls, … [Read more...] about A Shift Is Coming in the TEMPEST World
An Overview of RF Concerns for SCIFs and SAPFs
Why radio frequency shielding is an increasingly important part of SCIF and SAPF security Unintentional emanations have been a security concern since WWII, but in an increasingly technologically dependent and online world, that concern has multiplied. Radio Frequency (RF) shielding is being included in more SCIF and SAPF construction projects to keep adversaries from taking advantage of signals … [Read more...] about An Overview of RF Concerns for SCIFs and SAPFs
How to Sponsor an FCL for Another Company
The process for a cleared company to sponsor a Facility Clearance for a subcontractor When working on a contract for a government agency that requires access to classified information, you company may run into a situation in which they need to subcontract a portion of the work. This could be someone building walls on a construction project or filling a niche cybersecurity need for data you’re … [Read more...] about How to Sponsor an FCL for Another Company
Phishing Technique Trends You Need to Know and How to Spot Them
As phishing attacks rise, knowledge is the greatest weapon to combat them There was a 76% increase in direct financial loss as a result of phishing attacks from 2021 to 2022 according to Proofpoint’s 2022 State of the Phish report. As phishing attacks increase, scammers find new techniques and tools to trick people into giving up information or sending money. Arming personnel with knowledge of … [Read more...] about Phishing Technique Trends You Need to Know and How to Spot Them
An Acronym Guide for FSOs and Cleared Employees
When working in a cleared facility, there are a lot of acronyms to keep straight. Here are some of the most important to know. If there’s one thing the government loves, it’s an acronym. If you work in the high-security space holding a personnel clearance (PCL), odds are you hear a lot of acronyms being thrown around on a daily basis. With this guide, you’ll be slinging out lingo with the best … [Read more...] about An Acronym Guide for FSOs and Cleared Employees
How to Get Your Employees to Comply with Tedious Security Policies
Don’t let complacency put your facility’s security in jeopardy When people first start off in the security world, the standards they’re held to are fresh. They’re newly trained on them, bringing them to the forefront of their minds, and they make a point to follow procedures to the letter, whether out of a desire to impress or a fear of making mistakes. However, as they get more comfortable … [Read more...] about How to Get Your Employees to Comply with Tedious Security Policies
How to Improve Your Facility’s OPSEC
An overview of operations security and how to make sure your facility is using OPSEC best practices Your facility’s operations security (OPSEC) is the core of keeping the assets you protect safe. Operations could refer to what your company does, their mission or the way they process or store information. For cleared facilities, this is especially important, since bad OPSEC doesn’t only put your … [Read more...] about How to Improve Your Facility’s OPSEC