Summary
A 51-year-old database administrator, who had held a top secret clearance since 1988, was denied a security clearance due to concerns under Guideline E (Personal Conduct) and Guideline M (Use of Information Technology). The applicant was alleged to have engaged in unauthorized entry into information technology systems by guessing passwords and introducing unauthorized software and media onto company computers, acting as a "super-user." He was also accused of modifying or destroying data without authorization.
Additionally, the applicant failed to disclose on his February 2007 SF-86 an adverse security decision from 2004 by another federal agency, which had disapproved his access to sensitive compartment information. These actions raised disqualifying conditions related to unauthorized system access, misuse of information technology, and a pattern of questionable judgment.
While mitigating conditions were considered, the judge ultimately found that the applicant's unauthorized use of IT systems, including guessing passwords and expanding access without authority, along with his failure to disclose a prior adverse security decision, demonstrated a lack of judgment and compliance with security protocols. Consequently, the applicant's security clearance was denied.
Why the Applicant Was Denied
- The applicant engaged in unauthorized use of information technology systems by guessing passwords and expanding access without proper authority.
- He failed to disclose a prior adverse security decision from another federal agency, which raised questions about his candor and reliability.
- The applicant's actions were deemed to reflect a lack of judgment and compliance with security protocols.
Conditions Referenced
- AG ¶ 40(a)raisedIllegal or Unauthorized Entry Into Any Information Technology System
- AG ¶ 40(c)raisedUse of Any Information Technology System to Gain Unauthorized Access
- AG ¶ 40(e)raisedUnauthorized Use of a Government or Other Information Technology System
- AG ¶ 40(f)raisedIntroduction of Media Into a Company’s Information Technology System Without Authorization
- AG ¶ 41(a)rejectedTime Elapsed Since the Behavior OccurredThe judge found that the applicant's actions were commonplace and did not mitigate the security concerns.
- AG ¶ 41(b)rejectedMisuse Was Minor and Done for Organizational EfficiencyThe judge determined that the applicant's actions were not minor and raised significant security concerns.
- AG ¶ 41(c)rejectedConduct Was Unintentional or InadvertentThe judge found that the applicant's conduct was not unintentional and reflected a lack of compliance with security protocols.
Key Rule Quoted
“Any doubt concerning personnel being considered for access to classified information will be resolved in favor of national security.”
Procedural Posture
- SOR issuedMar 24, 2010
- Answer filedApr 13, 2010
- Hearing heldOct 6, 2010
- Decision dateMar 30, 2011
Cite For
- Denial of Security Clearance Due to Unauthorized IT System Access
- Lack of Candor in Security Clearance Application
- Security Concerns Related to Personal Conduct and Judgment