2023-09-30 14:59:32
The federal police add that it is now easier for an employee to report security breaches. It also gave greater internal visibility to the activities of its security division and took further steps toward creating a program to reduce the risk of a staff member leaking secret information.
These steps were taken following a review in 2020 that recommended significant changes to the security culture within the RCMP all the way up.
This report, of which The Canadian Press obtained a copy last year through the Access to Information Act, made 43 recommendations, including an update of training, stricter compliance with federal screening standards and the possibility to authorize random body searches.
The exam was written by a retired RCMP superintendent. It was requested following the September 2019 arrest of Cameron Jay Ortis, then director general of the RCMP’s National Intelligence Coordination Centre.
Ortis is accused of contravening the Protection of Information Act. He allegedly attempted to disclose secret information to “a foreign entity.” He is also accused of breach of trust and of having committed a computer offense. His trial is expected to begin soon in Ontario.
While emphasizing that the allegations against Ortis had not yet been proven in court, the former civilian executive had obtained the trust of several senior RCMP officers.
In particular, the review found that security awareness training was not mandatory in the RCMP. Another troubling fact: there was a widespread attitude that security restrictions had to be circumvented in order to do one’s job.
The author of the report also noted the lack of standards in the management of devices, such as laptops. Access to computer systems like the Canadian Top Secret Network was permitted even to employees with insufficient security clearance.
The report indicated that employees appeared reluctant to report security breaches for fear of consequences for themselves or their colleagues.
Several portions of the 78-page document had been redacted.
An RCMP spokesperson, Marie-Ève Breton, recently told The Canadian Press that several of the report’s recommendations have already been implemented. Others were in the process of being.
For example: the federal police have set up a website to allow employees to report security-related incidents, threats and possible breaches, mentions Ms. Breton.
Mandatory training has also been put in place for all RCMP personnel, civilians and police officers alike, to make them more aware of their responsibilities regarding security issues.
Other measures are being implemented. Thus, the RCMP is limiting, where possible, high security locations providing access to a confidential network to the strict minimum for operational purposes across the country. In addition, an internal risk management program is being created.
The RCMP has confidence in its current security verification process, emphasizes Ms. Breton. She recalls that it has many elements, including credit checks, criminal record checks, interviews and field investigations.
“As risks and threats evolve, the RCMP is committed to continually reviewing the process and strengthening its practices to protect the information, assets and employees under its responsibility,” she adds.
These measures were implemented in a difficult context for Canadian intelligence services. The Royal Canadian Mounted Police (RCMP) has also opened an investigation into possible violations of the Protection of Information Act regarding recent media reports on allegations of foreign interference.
1696100158
#RCMP #raise #security #awareness #among #personnel #training