This paper examines a scenario in which an intruder gains unauthorized access to a secure facility despite code-entry and CCTV protections in place. The analysis identifies insider-outsider collusion as the most probable means of circumventing these controls. The paper assesses the likely extent of damage — ranging from data theft and malware installation to destruction of physical property — and draws on Garcia (2007) and Newton (2008) to support its conclusions. Three practical recommendations are proposed: installation of modern biometric access controls, pre-employment background checks, and implementation of a separation-of-duties policy. Together, these measures aim to reduce the risk of future breaches facilitated by malicious insiders.
An intruder has gained access to a secure facility despite multiple security precautions being in place, including code-based entry and closed-circuit television (CCTV). It is important to note that an intruder who succeeds in gaining access to a secure location can do virtually anything he or she wishes, from altering or stealing information to causing outright destruction.
While organizational security measures such as code-entry systems may make it difficult for outsiders to gain access to secure areas or equipment, such controls can in certain circumstances be circumvented by unscrupulous insiders. In the present case, several factors could have facilitated the intruder's access to the secure facility:
The security cameras could have been unplugged or otherwise compromised. The intruder could have used stolen access code data to gain entry.
Given these possibilities, it seems highly likely that the intruder colluded with an insider at some point to obtain access privileges. For the purposes of this assessment, an insider is defined as any individual who currently has, or has in the past had, any association with an organization — including current or former employees and contractors.
The damage resulting from the intrusion described in this case could range from mild to extensive, depending largely on how long the intruder remained on the premises and what actions were taken during that time. However, it is highly likely that one or more of the following occurred:
1. Personally identifiable information belonging to the company's clients could have been stolen.
2. Malicious software could have been installed on the company's machines.
3. Sensitive data could have been downloaded onto removable media.
4. Organizational information could have been destroyed or disposed of.
5. Physical property belonging to the organization could have been stolen.
As discussed in the situational analysis above, it is highly likely that the intruder circumvented the control systems by colluding with an insider. According to Garcia (2007), physical protection alone is in most cases sufficient to deter outsiders working alone. In the present case, therefore, the security precautions in place — code-based entry and CCTV — would likely have been adequate to stop an independent outside actor. It is for this reason that the intruder must have colluded with an insider in order to effectively defeat those security measures and gain access to the secure area.
Insider-outsider collusion is one of the most challenging issues organizations face as they work to guarantee the security of their resources (Garcia, 2007). In the words of Garcia (2007, p. 29), "insiders may exploit their knowledge of facility operations and security systems performance." To effectively address insiders who misuse their familiarity with an organization or its privileges to compromise the integrity and security of organizational resources, new and unique approaches to threat identification and elimination must be embraced.
"Biometrics, background checks, and duty separation"
"Cited academic sources"
Always verify citation format against your institution’s current style guide requirements.