Misuse of Information Technology Systems
The Concern. Noncompliance with rules, procedures, guidelines or regulations pertaining to information technology systems may raise security concerns about an individual's trustworthiness, willingness, and ability to properly protect classified systems, networks, and information. Information Technology Systems include all related equipment used for the communication, transmission, processing, manipulation, and storage of classified or sensitive information.
Conditions that could raise a security concern and may be disqualifying include:
a. Illegal or unauthorized entry into any information technology system;
b. Illegal or unauthorized modification, destruction, manipulation, or denial of access to information residing on an information technology system;
c. Removal (or use) of hardware, software or media from any information technology system without authorization, when specifically prohibited by rules, procedures, guidelines or regulations;
d. Introduction of hardware, software or media into any information technology system without authorization, when specifically prohibited by rules, procedures, guidelines or regulations;
Conditions that could mitigate security concerns include:
a. The misuse was not recent or significant;
b. The conduct was unintentional or inadvertent;
c. The introduction or removal of media was authorized;
d. The misuse was an isolated event;
e. The misuse was followed immediately by a prompt, good faith effort to correct the situation.
Above Information Courtesy of Defense Security Service (DSS)
|
