Description
A SCIF, or Secure Compartmented Information Facility, is a workspace rated to secure highly sensitive information. A SCIF may have a series of security measures such as: vault doors, alarms with guard response, biometric ID of personnel entering/exiting, technical countermeasure sweeps (bug-sweeps), and adequate barriers to defeat external audio detection. If a SCIF contains information of extreme sensitivity it is not inconceivable that the IT infrastructure would contain a self-destruct mechanism. Image from: http://www.dlt-rack.com/certified-modular-scif.html
|
PRIMAL Assessment
To acquire information in a SCIF, PRIMAL will usually target the weakest link - personnel. A common mistake made by personnel working in a SCIF is bringing personal electronic devices into the workspace. This allows hacking and data collection devices to be smuggled inside. SCIF staff are also vulnerable to blackmail and bribery.
|