Tech Firms Seek Washington's Prized Asset: Top-Secret Clearances

Major tech companies such as Facebook and Twitter are interested in hiring workers with top-secret security clearances as they deal with foreign meddling on their platforms and come under increased risk of hacks, reports Bloomberg. From the article: In doing so, companies such as Facebook are competing with defense contractors, financial firms and the U.S. government itself. Security clearances are a rare and valued commodity, whether at a bank trying to prevent hackers from stealing credit-card data and emptying accounts or at a manufacturer building parts for a stealth fighter or missile-defense radar system. Bringing former government cyber warriors on board at companies can facilitate interactions with U.S. agencies like the NSA or CIA as well as help the firms understand how to build stronger systems on their own. "They have the tradecraft," said Ronald Sanders, a former associate director of the Office of the Director of National Intelligence and now director of the school of public affairs at the University of South Florida. "And the trade craft is some of the best in the world."

Re: Request your dcss clearance now

But only if you work for an employer who already has a position and is willing to cough up the $30k for the application fee.

Clearance does not necessarily imply anything

[El+Cubano]

As with anything the government does, there is a considerable tooth-to-tail ratio. For every person with a security clearance doing actual intelligence work (including cyber), there are least 10 others who have a clearance without doing that sort of work. For instance, the secretaries and administrative assistants, the HR personnel, the maintenance personnel, the groundskeepers, the managers who sit in meetings all day, the budget analysts, the financial personnel, the IT support staff, the janitorial staff, etc.

I point it out so that people understand that the pool from which the tech and defense firms are trying to hire is not of size N, but probably of size 0.2 * N. They might benefit from having some support staff with clearances, though they can certainly get by without it where the government cannot (support staff in classified facilities have to be cleared). The real challenge is that they are all competing for a small number of experienced intelligence professionals with active clearances.

BTW, you will not see them outsourcing these jobs to H1B workers.

In fact, that is an interesting thing about being a contractor for the government. If you are a worker bee, then you are practically immune from outsourcing. If another company gets awarded the contract you are working on, you can bet that with nearly 100% certainty the new winner of the contract will attempt to hire away all the workers that were on the old contract. Not only are you effectively immune from outsourcing, but you have a high likelihood of being able to continue working in the same geographic area (and maybe the same office/project) through any of a number of changes of employer. Try that in the civilian world. The tech companies will have to pony up, because the defense contractors already do.

Re:Clearance does not necessarily imply anything

[Gilgaron]

This is insightful... the 'tradecraft' and the clearance as completely different things. The whole idea when you get into this sort of thing is that you only know the minimum possible to be effective. I have heard there is even demand in people with inactive clearances since it is easier to reactivate than start from scratch.

Re:Clearance does not necessarily imply anything

[known_coward_69]

If you really want one, go get a federal job or join the military into a specialty that requires a TS just for being in that job field

Re:Clearance does not necessarily imply anything

[Gilgaron]

They are automatically suspended if you change positions, even within the same company. The new employers want you to have one beforehand because it is cheaper to transfer it than have one done up from scratch.

Re:Clearance does not necessarily imply anything

[Whorhay]

The government already does that to an extent for people that it is hiring. If you look at job advertisements they'll say the candidate must be able to qualify for some level of clearance as opposed to already having it.

When it comes to contractors though, already having the clearance is a big deal because it is expensive and time consuming to get. That said I don't see any reason that a private enterprise couldn't provide the same kind of service for vetting people. At it's most basic level the Secret and Top Secret clearance isn't really all that much trouble to sort out. It amounts to checking for criminal history, credit history, verifying previous employment and housing history, and finally interviewing the subject of the background check and a few of their friends/coworkers. Those are all things anyone could do, not just some federal bureau. The reason it's expensive and time consuming to get is that you're waiting on some federal bureau to get through a large backlog of work.

Re:Clearance does not necessarily imply anything

They are automatically suspended if you change positions, even within the same company. The new employers want you to have one beforehand because it is cheaper to transfer it than have one done up from scratch.

Not just cheaper... it means the person has already been vetted which means less time in getting them up to speed and no risk of a delay getting a new clearance. That could mean months of people not doing the job you hired them for and a risk you need to let them go if they don't get the clearance the job requires.

Re:Clearance does not necessarily imply anything

[tsqr]

This whole thing sucks for people who haven't been cleared (Because it's not possible unless you're hired for a job where the government actually requires it) and reeks of favoritism for past governmental employees.

I'd like to see federal legislation passed that either prohibits employment/job discrimination based on the possession at the time of hiring of a government security clearance, OR security clearances are automatically revoked or cancelled when leaving or changing employers and have to be re-verified to be re-instated after hiring to a new job, OR a law prohibiting an individual holding clearances from causing any of the clearances they already hold to be disclosed to a recruiter or prospective employer, other than ability to get a clearance or already having a clearance will have to be verified after a hiring decision.

While you're at it, why not wish for a law prohibiting discrimination based on the prospective employee's skill set? The current system reeks of favoritism for people who know how to do things.

Here's my personal experience, having held a secret clearance for 35 out of the last 40 years while working for defense contractors. Security clearances are de-activated when a cleared employee changes employers. If the new employer requests re-activation within a short period of time, there is some paperwork and minimal vetting to go through. If the request is not made within a short period of time, the employee goes through a re-verification process that requires a re-submission of all the very detailed personal information that was submitted the first time, and waits a long time (currently about a year) to be cleared. Then periodically (every 10 years or so), the employee goes through the whole thing again. If the cleared employee shifts from a position requiring a clearance to one not requiring a clearance, the clearance is suspended. If the employee returns to a position requiring clearance within six months, the clearance can be unsuspended quickly; if not, it's de-activated. If not re-activated within a fairly short period of time (6 months, I believe), it's cancelled.

I shouldn't have to say this, but not everyone can get a clearance. Do you have a non US person that's a close relative? Recent bankruptcy? Other financial problems? Ever been arrested for anything? Ever been charged with a crime? Ever had a restraining order issued against you? Less than honorable military discharge? Used any illelgal/controlled drugs or substances in the last 7 years? Court-ordered psychiatric treatment? Ever held a non-US passport? Ever been officially reprimanded for workplace misconduct? Ever been fired from a job for cause? Failed to pay Federal, state, or other taxes? Ever used a credit counseling service? Been delinquent on any Federal debt (hint: Federally guaranteed school loans)? Ever defaulted on a loan? Ever had anything repossessed? Been evicted for non-payment of rent? Ever been sued? Ever sued anyone? Ever been a member of an organization that advocates or practices acts of violence to discourage others from exercising their Constitutional rights (hello, antifa)? Any of these can disqualify an individual, and some of them are immediate disqualifiers.

Re:Clearance does not necessarily imply anything

[mysidia]

While you're at it, why not wish for a law prohibiting discrimination based on the prospective employee's skill set? The current system reeks of favoritism for people who know how to do things.

No.... discrimination based on having SKILLS or KNOWLEDGE required do the job well is fair and reasonable.
For all security clearances say, the entire job description could have been unplugging toilets in a DoD bathroom or handing out fliers and other propaganda at conferences.

Security clearances are entirely artificial and say nothing about qualification to a handle a job; they just say
something about working for an employer who had some security compliance requirements and some gov't agency run history and background check on you once.

Re:Clearance does not necessarily imply anything

[mysidia]

The new employers want you to have one beforehand because it is cheaper to transfer it than have one done up from scratch.

Then they need to either reduce the cost of obtaining or increasing the cost of transfer to make the costs identical for transferring, like they ought to be....

Re:Clearance does not necessarily imply anything

[Goldsmith]

Tact and discretion are the skills you're overlooking.

These things have absolutely nothing to do with your ability to perform the technical parts of the job. Of people who have clearances, very few of them will actually need to DO something related to that clearance. There are a lot of people in the government who just take up space. However, if it comes up, it is necessary to have people who can work efficiently within a hierarchical organization with seemingly arbitrary rules while having access to incomplete information.

I've had a job that required this. It was fucking hard. The hard part had nothing to do with the technology (that part was trivial). The hard part was needing to accept and deal with the situations and people that were part of the job.

Re:Clearance does not necessarily imply anything

[Gr8Apes]

There's already a file on you and the gov never ever throws anything away.

Re:Clearance does not necessarily imply anything

[Gr8Apes]

Why?

Re:Clearance does not necessarily imply anything

[Entrope]

Until a few years ago, most of the background investigations were contracted out. The biggest contractor(s? I forget) got in serious trouble for regularly faking information, and the government decided it wasn't worth contracting the checks to outside companies.

Re:Clearance does not necessarily imply anything

[Gr8Apes]

For all security clearances say, the entire job description could have been unplugging toilets in a DoD bathroom or handing out fliers and other propaganda at conferences.

Security clearances are entirely artificial and say nothing about qualification to a handle a job;

You have absolutely no clue what this type of security clearance is about. It absolutely IS a valid qualification for a job, because if I can't trust you to not run over to the competition, then I can't use you no matter what your other qualifications say about you. That you fail to understand this is evident from all your posts. I'm well aware of what goes into a clearance and what the liabilities are. And yes there are significant liabilities to some types/levels, it's not all gravy like you seem to believe.

In today's world, the process of vetting takes significantly longer than it used to, so someone with clearance is a lot more valuable to a company than someone without. Let's say you get a contract that requires you to deliver 10 months work in 12 months. Start with cleared individuals instead of your better than them uncleared star choices, guess which one actually produces a product in 12 months vs maybe starting on the project at 12 months? So yes, once cleared, you are more valuable. It's a time and effort and cost thing to get cleared, and they are basically able to take advantage that you already are vs the uncertainty of clearing an unknown.

Oh, and to add to the list of things that make you less likely to be cleared - are you a "gig economy" participant? Move much? Had a ticket? Had a wreck? Have relatives with health/financial/emotional/mental problems? Yes, the list is long, detailed, and things you might not even mention to your spouse unless pressed like your obsession with Hentai "porn" back in your early college days or your too close roommate "Bob" that keeps showing up a little too chummy in your and your friends FB/Instagram history. TBH, not even sure what they do today wrt to social media, but I'm sure they peel back that entire level of privacy. I certainly would if I were them as it's an additional tool to get a better view of who they're vetting. And in case you're wondering quite a few applicants can't get cleared at all, much less for the levels they apply for. If you're rational you will likely change your position on how valuable an existing clearance is to a prospective employer that needs that requirement for a job position. It's not just a piece of paper.

Re:Clearance does not necessarily imply anything

[Gr8Apes]

For all security clearances say, the entire job description could have been unplugging toilets in a DoD bathroom or handing out fliers and other propaganda at conferences.

That could be the entire job description, but in the overwhelming majority of cases, it isn't. In my last classified assignment, I worked in a closed area with about 30 other engineers. The cleaning crew came in once a week, after all desks were cleared and whiteboards covered, and was escorted by a cleared member of the team. 30 years ago you may have had secretarial staff with clearances handing out meeting materials and serving refreshments at classified meetings, but I haven't seen that sort of thing in a long, long time. Maybe it still goes on in the military, but as a rule, not a defense contractors.

I've seen job descriptions shorter than that, because you needed a clearance to see the actual description. For me, I once went to an interview where the jobs weren't listed at all. The entire interview started with some distracting questions about your CV's listings and then a whole lot of vetting questions of the types required for clearances of the types that are immediate disqualifiers. Out of the 1000 or so attendees, I think maybe 20 got offers and you had to accept blind. I know not all cleared.

Re:Clearance does not necessarily imply anything

"the gov never ever throws anything away"

Except their embarrassing emails.

Re:Clearance does not necessarily imply anything

[Whorhay]

What I was trying to get at is that unless a company has a requirement from the Government that employees have an official clearance awarded by the Government, they can simply contract someone like a Private Investigator to do the leg work. An Investigator should be able to gather everything HR would need in 40 hours or less for most people. Even at $100 an hour that ends up being pretty cheap by comparison instead of paying a premium salary for someone who already had a clearance.

Re:Clearance does not necessarily imply anything

[clong83]

And, just to make a point of order. Just because a janitor is cleared doesn't mean it is okay for them to access classified information that they have no business knowing. Ideally, a janitor should not know any classified information. Their schedules should be known, and whiteboards should be erased/covered, documents stored safely, etc, when they come in. They have to have a clearance to be in the building, and to know that they are trustworthy if they ever do accidentally interrupt a meeting or overhear a conversation or some such. But a janitor has pretty much ZERO 'need-to-know' any specific information at all, and for all practical purposes, other employees should treat a janitor as an uncleared person.

Re:Clearance does not necessarily imply anything

[david_thornley]

I once interviewed for a job needing a clearance. They were forthcoming enough to tell me that there was a customer, and the customer wanted a product, and the product had software and hardware aspects. I suspect the customer was a US government agency, probably in the Defense Department, but that's unsupported speculation. They were a lot clearer on what I'd be doing (basically, source control guy and buildmaster).

Re:Clearance does not necessarily imply anything

[Entrope]

Perhaps you should not have mentioned particular government clearance levels if you were talking about some kind of non-government background check.

However, the same incentives that led the government's contract background checkers to cheat would apply to private sector firms, with the additional problem that it is much harder for a private employer to check the results they got.

The reason that employers pay a premium to cleared people is not simply because it costs money to do the background check, or for anything having to do with government or government contractors. It is simple supply and demand. Imposing a strict background check significantly restricts the supply of candidates. Whatever the level of demand, there will be a smaller supply of workers who pass that check than those who might or might not pass, and so salaries will tend to be higher for people who do pass it.

Re:Clearance does not necessarily imply anything

[Whorhay]

Government clearances are the only ones I know of and are the subject of the article so they bear on the conversation clearly. I'm just saying that it is silly of any company that is merely looking for trustworthy employees to require the applicant to have a government clearance.

It's kind of like if I were starting a private armed guard company, but would only hire former cops and military veterans, because I knew they had firearms training. I would be foolishly limiting my prospective applicant pool which would lead to me likely having to pay a higher wage.

Yes, requiring a strict background check means a smaller pool of people than you would have otherwise. However requiring a government issued clearance is limiting the pool even further because now instead of considering people who could pass that check, you're only considering people that have already passed it.

Besides which the background check for a clearance really isn't all that strict. The whole point of it is to verify the applicants integrity and check for skeletons in the closet that could be used for blackmail.

That isn't what a clearance means

A security clearance means that you are (relatively) law-abiding, that you follow rules and procedures, and that you can be trusted not to reveal confidential info.

Those are qualities many employers look for, but a clearance doesn't say anything as to competence.

Re:That isn't what a clearance means

[Gr8Apes]

A security clearance means that you are (relatively) law-abiding, that you follow rules and procedures, and that you can be trusted not to reveal confidential info.

It actually doesn't mean anything about the first two and the last one is only a part of the story.

Those are qualities many employers look for, but a clearance doesn't say anything as to competence.

I don't think anyone is saying a clearance has any bearing on competence for a particular job. It's obvious a cleared welder would be completely unsuitable for a programmer's job and vice versa.

Re:That isn't what a clearance means

[najajomo]

@Anonymous Coward: "A security clearance means that you are (relatively) law-abiding, that you follow rules and procedures, and that you can be trusted not to reveal confidential info."

You mean like Edward Snowden

“I don't want to live in a world where everything I say, everything I do, everyone I talk to, every expression of creativity and love or friendship is recorded.”

thats a confusing headline

[AkumaKuruma]

just because people have clearances doesn't mean they have skillsets that would benefit this. It just means they don't have the markers that make them untrustworthy with highly sensitive information. there are plenty of people who hold a top-secret clearance that don't know where the "any" key is

it sounds more like someone got cyber-security industry confused with security clearance. i understand their need for cyber-defensive capabilities. some banks, like USAA, actually run their own in house cyber operations desk to help protect their digital assets. cyber-security as a trade spans across all digitally connected industries (govt, banking, industrial, commercial....) and they are all being head-hunted by the same groups. this would just be another company throwing their sharks into the feeding tank.

Re:thats a confusing headline

[OverlordQ]

And the people that do have the skillset, dont want them because then they become "That Guy" that has to work on all the stuff.

Please expedite my submission

[rmdingler]

“Loyalty to the United States, strength of character, trustworthiness, honesty, reliability,’’ are among the attributes sought in the process, according to the U.S. State Department website.

Is it possible the wait would be less than 311 days if I was an Eagle Scout who contributed a large amount to a strategically selected political campaign?

Bad idea

[volodymyrbiryuk]

How much is Zuck gonna pay them to get his hands on classified data. As if companies like Facebook have an incentive to make their system more secure if there is virtually no penalty for weak security (remember Equifax)

What is this, I don't even

[0xdeadbeef]

Security clearances mean fuck all. It only proves you passed a background check. Bragging about it is a negative signal.

What bullshit is this article trying to sell? Who benefits from this? Contracting companies?

Re:What is this, I don't even

[Baron_Yam]

>Security clearances mean fuck all. It only proves you passed a background check.

I have worked government contracts in semi-secure environments (just police checks, not full background investigations). Nobody gets past the front desk without being cleared, so if you're a vendor and want a contract, it's incredibly useful to be pre-cleared.

I've seen a few instances where someone got checked last minute at the front door and didn't pass. It's stupid that they tried, embarrassing for the vendor, and delays the work.

Re:What is this, I don't even

[Baron_Yam]

While history shows us secrecy is frequently used to cover up incompetence or prohibited activity, it's ALSO used because it's a lot easier to accomplish certain goals if you don't tell everyone what you're doing first.

Imagine if the cops had to give criminals access to their active investigation documents, for instance. Similar concerns apply at higher levels of government.

It would be really nice to live in a world where we all get along, but we don't. As long as there are different groups in competition, the side that gives up secrecy will lose.

Re:What is this, I don't even

[EndlessNameless]

For that matter, anyone with a security clearance has a higher than average likelihood of some loyalty to secret or not-so-secret societies that prey on the kind of mental instability that is rife in the military.

Could you please link to where you learned this information? There has certainly been a lot of psych research on veterans and active military lately, but I've never heard of anything like this.

Everyone involved with this should be ashamed.

Everybody knows the NSA and CIA have top-tier cybersecurity talent. The tech industry just wants access to a product, and they are willing to pay for it.

It goes without saying... unless there is a national security interest in sharing that information, they should be told to pound sand.

Re:What is this, I don't even

[chihowa]

So what this all adds up to is that it means that tech companies want people who are already cleared because they're too lazy or too cheap to go through the process themselves. Instead they'd rather some other company go through the expense and then poach employees off them.

That sums it up. If they aren't willing to foot the cost and wait for the process, they aren't terribly concerned about keeping you on in the long-term anyway. Requiring an active security clearance a good sign to potential applicants in itself.

Re:What is this, I don't even

[Jfetjunky]

From first hand experience, clearance != good performer. So what are you left with? Hoping they'll divulge secrets? That's the whole point of the security clearance. They see things and work on things they CAN'T and WON'T (or at least shouldn't) share anywhere else.

I had a friend who wanted security clearance so he could talk to other people with clearance and learn cool secrets. It doesn't work that way. You seriously do need a reason to be exposed to classified information, you can't just start sharing it freely once you're "in the club".

Re:What is this, I don't even

[Gr8Apes]

Imagine if the cops had to give criminals access to their active investigation documents, for instance.

If it's still active and no one is charged, then no, or at best a redacted version removing anything that can identify suspects and possibly victims. In fact, I'd argue that investigations should be known when a victim or incident is known (murder at pub, wreck on highway, vandalism on building, etc) is being investigated but all discussion of potential suspects should be redacted to prevent fake news from spreading. An investigation is not proof, and no one should be unjustly smeared. This obviously is different when a suspect is avoiding apprehension, in that case apprehending the suspect may trump anonymity for the public's safety, but that will happen in rare cases compared to the total.

As long as there are different groups in competition, the side that gives up secrecy will lose.

I'd disagree, in many cases secrecy is overblown and unnecessary. Take the NRA, for example. Their plans et al are well known and scripted. You can almost detail exactly what they'll do before they do it in response to a gun bill. It makes them no less effective nor have they lost because we know what they're going to do. The same can be said for the gun bill supporters, they don't act in secrecy either. They've had an uphill climb, and they've not succeeded in that climb.

Re:What is this, I don't even

[Anubis+IV]

Security clearances mean fuck all. It only proves you passed a background check.

From personal experience, I count at least eight other things it proves I passed before I ever reached the background check, and those are just the screens I was aware of. I withdrew my name when I hit the background check because some stuff changed in the 8 months leading up to that point, but suffice to say, you're woefully misinformed if that's all you think it means, particularly to the people who run in those circles.

You can view it however you choose, of course, but having a security clearance is a positive signal for the vast majority of employers, even those who may not need it, in much the same way that having a college degree typically is a positive signal for anyone seeking skilled labor.

I call BS

You don't need any security clearance to work on a company's most secret stuff, or defend them from (cyber-)attacks or anything.
If they're recruiting people with (a need for a) clearance, it simply means they're under government contract, either directly or through another contractor.
Thank you Bloomberg for letting us know tech firms are working for the TLAs.

Re:I call BS

[chill]

You are incorrect.

The FBI, DHS, and others in the intel community are looking to share information with private sector security teams.This occurs quite a bit in various critical infrastructure -- finance, utilities, etc.

Without a clearance their briefings are usually along the lines of "watch out for phishing schemes around the hurricanes".

With the clearance they can also provide things like "monitor for traffic to/from these specific IP addresses". Or "your IP addresses have been seen communicating with some CNC servers that we've compromised".

This has nothing to do with being a gov't contractor. The intel community wants to be able to share actionable intelligence without giving away methods and means.

Re:I call BS

[PPH]

The intel community wants to be able to share actionable intelligence without giving away methods and means.

Whose methods and means? The NSA/FBIs? Here, a security clearance is more about keeping details of surveillance from the general public and specifically those under surveillance. There isn't that much 'method and means' to be leaked. If it's the 'methods and means' being developed by private entities (Google, Facebook, Microsoft) the security clearance is an excuse for the gov't to limit your market. Suddenly, there's a whole list of people and countries that you can't do business with. Or even talk to.

Clearances are a racket

[Headw1nd]

Security clearances are one of the biggest rackets going. It has become nothing more than a system of cronyism and classism disguised as a security concern. The well-connected breeze through the process and into a world of guaranteed money while the poor are fenced out. The whole systems sucks up billions, and in the end has failed to prevent infiltration and security breaches.

The best part for the people running the con? Zero transparency by design. There will never be an accounting because the only people who could perform it are at the top of the system.

Re:Clearances are a racket

[110010001000]

I don't get it. What does being poor have to do with getting clearances? You get sponsored for clearances for a reason and your company/agency pays for them. The individual doesn't pay for them.

Re: Clearances are a racket

[110010001000]

Lots of people with bad credit can get clearances. Even the janitorial staff needs clearances. Lots of middle class people have terrible credit.

Re: Clearances are a racket

[Gilgaron]

That in and of itself isn't going to get you rejected. If you have a bad credit check and have another flag like you can't pass a drug screen, then you're not getting cleared unless you're related to the President or something, though.

Re:Clearances are a racket

[clong83]

Disagree... Bad finances can get your clearance scuttled before it begins, but generally in those cases we are talking about people with gambling debts, multiple bankruptcies, credit card debts, and other more-or-less self-imposed problems that suggest a possible lack of impulse control. Is it possible that someone gets into financial trouble and owes a ton of money through no real fault of their own? Sure. And the process might unfairly target them. But the fact remains that, fair or not, someone who owes more money than they can expect to make on their job will likely be a security risk if given access to valuable information. It's not a perfect system, but allowing people with bad debt to get security clearances isn't likely to improve the situation any... Simply being poor is not a problem, or they'd never be able to find janitors in some of the secure buildings.

I also dispute your assertion that the well-to-do get sailed through. Maybe if you are in the inner circle of the executive branch or something you can get one in short order, but I know one guy who has currently been waiting over a year to hear back anything. No financial issues or debt other than a reasonable mortgage. Nice family, goes to church every Sunday, has a good job. Never did any drugs, doesn't even drink, no black sheep in his immediate family that would cause any problems. One of the most trustworthy and dependable guys I know. His employer even paid for the 'fast-track' which is supposed to cut a few months off. And he's heard crickets. So... counterpoint.

and for a job that needs the clearance!

[Joe_Dragon]

and for a job that needs the clearance!
if you work for Facebook in a non government roll full time you may just lose that clearance from being out of the position when the renew time comes up.

Re:and for a job that needs the clearance!

[XXongo]

and for a job that needs the clearance! if you work for Facebook in a non government roll full time you may just lose that clearance from being out of the position when the renew time comes up.

Right, a secret clearance is not forever. It goes away if you don't have a government requirement for it.

Re:and for a job that needs the clearance!

[Gr8Apes]

Once you have it you can maintain it if you desire. It's a cost item. Just because you have it doesn't mean you get any access to anything, it merely means the government keeps tabs on a whole list of things on you and you will have some reporting requirements.

Re:and for a job that needs the clearance!

Not so...

If you don't have a billet (assigned job and need for a clearance) they will not do your background investigation, at any price.

When you leave a job with a clearance, you don't lose it right away, it goes inactive and can be reactivated for a period of time which varies depending on the clearance and when you last went through the investigation process. However, once your clearance expires, you have to go though the investigation process.

Of course, if you have had a clearance in the past, the investigative process can be a lot easier and faster because the investigation may be partially completed and a lot of the information already vetted. It may be faster, but it is no less complete. Also, once you have a clearance, you are subject to the nondisclosure agreement until you die, regardless of your clearance status.

Re:and for a job that needs the clearance!

[Gr8Apes]

I could have sworn you could maintain it, at least at some time in the past and for a given period of time. However I see from various postings that appears to no longer be true. So be it.

The NDA expires... when you do. (I'll be here all night....)

Re:Security clearance

[Kierthos]

"Greetings {insert government here}, I work for {large social media company} that collects truly grotesque amounts of information on people, some of whom don't even use our service. I would like security clearance please, so {large social media company} can have access to information that they are normally prohibited from learning."

Yeah, no idea why various governments would have a problem with that.....

Re: Request your dcss clearance now

[gtvr]

And only if your employer is even authorized to hold clearances. You can't just get one because you want to.

If you want a US security clearance today...

[hyades1]

...apply to that well-known vetting agency, "Spies-R-Russ".

"best in the world" spook bullshit as usual

[Bearhouse]

a former associate director of the Office of the Director of National Intelligence and now director of the school of public affairs at the University of South Florida. "And the trade craft is some of the best in the world."

Re:"best in the world" spook bullshit as usual

[Bearhouse]

Damn, hit "post" too fast; meant to say, I'm not sure - based on recent multiple failings - we do have "some of the best" anymore

Re:Security clearance

[XXongo]

Why doesn't Facebook and others do what the defense industry does - get one if their employees to apply?

Because you can't just "apply" for a secret clearance; you must show that you have a specific requirement for one.

You can't have cleared employees just because.

[jeff4747]

To have cleared employees, your company has to be working on a government contract that requires a clearance. So Facebook, Twitter and similar can't just decide to hire cleared employees. They have to go through the process to become government contractors, and then win a contract that requires a clearance.

Also, if you have a clearance and stop working at a job that requires a clearance, your clearance goes away. So once Facebook hires someone with a Top Secret clearance, they no longer have a Top Secret clearance and lose access to the information the article claims Facebook wants.

Even if Facebook, et al manages to go through all the steps to get a contract that requires cleared employees, they can't work on whatever Facebook wants. Those employees have to work on that contract. Those employees also can't just say "Hey, we need to do _____ to stop ______ from hacking us", because that's classified information. The employee can't just share it with everyone at the company.

This author should really have spent a minute or two researching how clearances work before writing this shitty article.

Re:You can't have cleared employees just because.

[PPH]

Also, if you have a clearance and stop working at a job that requires a clearance, your clearance goes away.

To be accurate, it becomes inactive. All the background checks that were done on an individual are still on file. And in many cases they are still being done*. So people in these positions are of value because they can be issued a new clearance pretty quickly.

*People leaving many classified positions have systems capability knowledge and remain targets of foreign intelligence services. Sometimes for years or even the rest of their lives. The DoD (for one) keeps an eye on ex-contractors in such positions.

Re:You can't have cleared employees just because.

[swb]

Maybe they just want free, government-certified background checks.

I'm also assuming they're looking for people with only the most senior security clearances, the kind that are only really certified by the FBI or some other government intelligence agency.

It might be useful if you're just looking to hire someone with an extremely reliable background who exceeds private sector levels of background certification to work on critical security systems.

Both [Re:Do what now?]

[XXongo]

The Russians didn't hack them - they purchased those ads like any other customer.

Non sequitur. The fact that the Russians purchased ads doesn't mean that they did not also hack them. They could do both.

And, in fact, it's pretty clear that the Russians were doing some explicit hacking-- they were behind the hack into the DNC e-mail (done by Posesta clicking a link in a phishing e-mail).

Re:Security clearance

[PPH]

This.

In fact, it's usually the government that makes a clearance a condition of a contract. And it's in the best interest of the company to minimize the number of people that need to be covered by a clearance.

A lot of people are looking at this clearance issue from the point of view of selling jet fighters or submarines to the government. Where their primary business is to sell such goods. Facebook and Twitter would be better off not having cleared employees. And developing their own anti-hacking tools and processes completely unencumbered by government secrecy requirements. Unfortunately, the NSA (and other TLAs) have managed to become the gatekeepers of inter company intrusion data. Which they need to keep their systems clean.

Um...what?

[jeff4747]

The well-connected breeze through the process and into a world of guaranteed money while the poor are fenced out.

How are the poor fenced out?

The employer has to pay for the clearance, so a poor employee does not face a financial burden. The employee has to be working for the employer during the application, so they can't do some sort of "unpaid internship" during the investigation.

Many things that people think would disqualify someone don't actually disqualify someone. For example, I've known people with a felony conviction on their record who got a clearance. Also, poor credit does not automatically disqualify someone. The investigators will want to find out why you have poor credit, and as long as the reason isn't "I spend every dollar I can get my hands on", it will probably be OK.

About the only guaranteed disqualifications are an espionage conviction, a perjury conviction or failing the drug test.

Me thinks it's about the money

[Trax3001BBS]

Q Clearances as of 1998 cost $3,225 https://en.wikipedia.org/wiki/...

Let's enlighten the internet about US clearances

[RightwingNutjob]

I'm sure that no one will blab anything of interest to an adversary government.

Jesus, come on guys. How many "anonymous users" have posted an Ask Slashdot about some arcane details about US cyber security in the past 20 years? Think before you flap your lips, eh?

Why not just do the same level of investigation?

[ErichTheRed]

If the tech firms want cleared people so they can get more government contracts, then they have to draw from the same pool that all the defense contractors, TLAs and military do. But if they want that level of background check, why not just spend some of their resources, hire a PI and do similar levels of vetting?

An acquaintance of mine was in the Navy on a nuclear submarine and had TS clearance. From what he's told me and what I've read about it, the difference between a clearance investigation and a simple background check is that they're trying to figure out why they might have a problem with you _later on_, and less about why you have the problem _now_. Someone who's a problem gambler or always in trouble with the law is a reasonable risk for being compromised by a foreign agent. Someone who has chronic financial disasters is a huge red flag because all a spy has to do is wave enough money in their face. And more importantly, having something in your past that's embarrassing or that you would do anything to hide would need to come out in an investigation as well, to ensure you won't do what a spy asks to keep your dirty little secrets hidden. The point is to trace down all these avenues and determine whether or not the individual is worth the risk to trust. (I'm sure military professions requiring clearances have this issue too...especially in the enlisted ranks you probably have a ...diverse... range of credit problems, criminal histories, etc.)

It seems that Facebook et al, with access to all sorts of private-ish info on you, would be well-positioned to conduct their own secret-equivalent clearance checks.

Re:Security clearance

[gtvr]

It's called a DD-254 http://www.dami.army.pentagon....

I had a full scope TS/SCI clearance once...

It wasn't worth it. Constant invasive background checks on you and people close to you; you have to disclose basically everything about your life to the government, such as everywhere you've lived for the last seven years, monthly bank statements for all of your back accounts for the last year, personal information about all of your in-laws, and so on; and you have to constantly take training classes that teach you how to be paranoid and never trust anybody else. I was starting to experience serious anxiety problems, all so that I could work in a concrete bunker that had no connection to the outside world, on dummy terminals that connected to ancient computers that were doing classified work that you're not sure the government even should be doing.

I quit and decided that I'll never work at another job that requires a government clearance, and I've been much happier for it.

Re:Security clearance

[PPH]

Right. Lots of paperwork involved if you want to do gov't work. And much of it comes with constraints on what the contractor or its employees can do. Which is why, if I was Twitter, I'd be holding out against entering into these sorts of agreements for as long as possible.

It's arguable that the US government really has anti hacking tradecraft that is so far ahead of commercial grade stuff to make the nuisance of clearances worthwhile. And if commercial grade won't do, you can always buy stuff from Israel.

You're not immune from outsourcing

[rsilvergun]

your wages are still lowered by it when you're left competing with people leaving the private sector and gunning for your job.

Or Maybe They're Working on Classified Programs...

[Koreantoast]

Or, if you read between the lines, maybe it implies that Facebook, Twitter and similar are ALREADY involved in classified government programs.

NSA seek to embed spies in tech companies ..

[najajomo]

Under the pretext of protecting us from the hackers the NSA-CIA are going to embed spies into tech companies such as Facebook and Twitter ...

Re:Or Maybe They're Working on Classified Programs

[jeff4747]

Then they wouldn't be trying to hire people with clearances, they would have already hired people with clearances.