Activists Missing in #Zimbabwe, Also the U.S. Ambassador Tweets About Mickey Mouse

Posted: 4:01 pm ET

 

In case deleted, the tweet is here: https://cloudup.com/cVV4BmxzhOj

#

Burn Bag: Consular Locally Employed Staff on LinkedIn? #VisaTroubles

Via Burn Bag:

“So, the Consular Section’s locally engaged employees are publicly identifying themselves as such on LinkedIn? Not a good idea.”

via imoviequotes.com

via imoviequotes.com

LES – Locally Employed Staff

FSNs – Foreign Service National employees

#

OPM Hack Victims Must Re-Enroll Starting December 1 to Keep Monitoring Services

Posted: 12:37 am ET

 

Some former and current federal employees whose personal data was compromised in the OPM data breach will have to re-enroll starting December 1 to continue receiving monitoring protection from a USG contractor. OPM doesn’t say what will happen to the data, feds and former feds have already submitted to CSID, but folks who have enrolled in that service will no longer have access to their CSID account when that contract expires on December 1. The Government Executive is reporting that as many as 600,000 individuals impacted by the initial hack will need to re-enroll to continue monitoring services through ID Experts. How is it that CSID is not able to port data over to ID Experts? Below from OPM:

OPM is announcing a change to the credit monitoring and identity protection service provider that will affect a subset of individuals impacted by the personnel records cyber incident announced in the summer of 2015. Most impacted individuals will not experience any change to their current coverage, and do not need to take any action, but a subset of individuals will need to re-enroll to continue coverage.

OPM currently uses two different companies to provide credit monitoring and identity protection services free of charge to impacted individuals. Winvale/CSID covers the 4.2 million individuals impacted by the personnel records cyber incident and ID Experts (MyIDCare) covers the 21.5 million individuals impacted by the background investigations cyber incident. As of December 1, coverage under Winvale/CSID will expire.

Credit monitoring and identity protection services from Winvale/CSID expire on December 1, 2016. Once services with Winvale/CSID expire, you will no longer have access to information in your Winvale/CSID account. If you wish to review or print your credit reports or other monitoring information from your Winvale/CSID account, please log in to your account prior to December 1.

As of December 2, 2016 all individuals impacted by either incident will be eligible for coverage through ID Experts (MyIDCare).

According to OPM, individuals currently covered by ID Experts (MyIDCare) will not experience a change in their coverage or service at this time and do not need to take any action. More:

Starting December 1, individuals previously covered by Winvale/CSID will be offered services through IDExperts (MyIDCare). Impacted individuals will also still be automatically covered by identity restoration and identity theft insurance, but you will need to re-enroll with ID Experts (MyIDCare) if you would like to continue to receive monitoring services.

Most of the individuals covered by Winvale/CSID were also impacted by the background investigation records cyber incident. These individuals should already have received a letter from OPM inviting them to enroll in services with ID Experts (MyIDCare) and providing them with a 25-digit PIN code.

If you previously received a notification letter in connection with the background investigation records incident and wish to enroll with ID Experts (MyIDCare) now, you will need to use the 25-digit PIN code provided in this letter. Click here if you have your 25-digit PIN code and wish to enroll now.

If you believe you previously received a notification letter in connection with the background investigation records incident, but no longer have your original notice, you can visit the Verification Center to obtain a duplicate copy by U.S. Postal Service.

If you are in the subset of individuals who were not impacted by the background investigations incident, you will be receiving a new notification letter from OPM via the U.S. Postal service with a 25-digit PIN that you can use to enroll with ID Experts (MyIDCare). We expect to mail the majority of these notifications in November 2016.

Note that OPM makes clear that ID Experts cannot enroll victims without the 25-digit PIN code and cannot provide former/current employees with a PIN code over the phone.

Read more here: https://www.opm.gov/cybersecurity/ and https://www.opm.gov/cybersecurity/personnel-records/.

And while you’re reading how to re-enroll, you might want to read about grafted fingerprints and hackers’ long term intention, because why not?  If the data has not surfaced for sale, we have to wonder what was that hack about?

 

#

 

 

Burn Bag: Worst bidding season EVER — time to scratch the whole system and start over?

Via Burn Bag:

“Bidding never made much sense but this year seems so much worse it really seems time to scratch the whole system and start over.  After a training cycle, PSP cycle, DCM cycle, and all the back room deals, plus three different websites including FSBid and the SharePoint sites for EUR and everyone else ( what’s up with that?), it’s a wonder anyone who makes it to any assignment is actually qualified for it.  Has there ever been an OIG inspection on bidding?”

computerslam

#

FSO Morgan O’Brien Launches DiploSport Podcast on Sports Diplomacy

Posted: 1:03 am ET

 

If you’re taking a road trip, and are looking for something to listen to in the car, check out the DiploSport Podcast. FSO Morgan O’Brien spent the past year studying sports diplomacy as part of a fellowship sponsored by the Council of Foreign Relations and the NBA. For his research, he interviewed journalists, policy makers and athletes to discuss the interplay of sports and government.

The first episode features former Secretary of State Condoleezza Rice as his inaugural guest (full transcript here). Others featured in the podcast include Norwegian speedskating legend and Olympic champion, Dr. Johann Olav Koss, founder of Right to Play (bit.ly/JOKossRtP) an organization which uses sport to connect with youth around the globe who face some of the most challenging circumstances imaginable; 3x American skeleton Olympian Katie Uhlaender who is preparing for the next Winter Games in Pyeongchang 2018; Ruth Riley who served as a State Department Sports Envoy, and an NBA Cares Ambassador; and two-time Olympic medalist Michelle Kwan who also did a stint as a State Department Sports Envoy. He told us that he started interviewing earlier this year and have about 20 podcasts in the can.

The podcast host is a Public Diplomacy officer who joined the Foreign Service in 2009 (146th A-100). He was  Ambassador Holbrooke’s assistant for his first tour, and he did a consular tour in Brazzaville.  When he came back to the State Department, he worked at the Sports Diplomacy Division of the Bureau of Educational and Cultural Affairs (ECA). For the past 12 months, he was attached to the National Basketball Association’s International Operations team and had the opportunity to study sports diplomacy.  He is currently in language training in preparation for his next assignment to an East Asia post. We asked him a few questions about this project:

Q: How were you able to get a fun fellowship like this?

MO: This past year, I was on the International Affairs Fellowship through the Council on Foreign Relations, so this wasn’t a formalized “sports diplomacy/NBA Fellowship,” per se. I first pitched the idea to the NBA, with whom I had worked the previous two years when I was in ECA. When they agreed to the concept, I put together a written proposal for the CFR, which was then followed by a panel interview before ultimately being accepted. Since I applied, two things I think have changed: one of the stipulations was that applicants needed to be under 35, I think that’s no longer the case; and I think there is an extra level of State vetting now. Whereas I sent my proposal directly to the CFR, I think this year’s applicants need to be approved by HR before submitting to the CFR.

If one gets creative in canvassing the bid list, they’ll find that the Department can be fantastic about enabling/empowering officers to pursue opportunities outside State, including awesome fellowships (the Una Chapman Cox Fellowship is another incredible, self-paced opportunity). And while I don’t know how it was done, there are officers actually working on international affairs for a few mayor’s offices in a handful of major cities in the US.

Q: What was it like working with the NBA team?

MO: I was a fully-integrated member of the NBA team for the year, fulfilling a childhood dream of working in pro sports. I supported the All Star Game (held in Toronto) and the “Basketball Without Borders” elite youth camps held around the world this past summer. I learned a ton about the decision-making process of a multi-billion dollar organization, and was pretty blown away by their sincere commitment to social responsibility programming. At State, we should also be proud to know that the NBA really relies on us around the world as subject matter experts and partners. There are dozens of Posts with whom we worked throughout the year—whether it be for women/girls-centered programming in Latvia and Ethiopia or to help demystify the visa process for the families of our players in Serbia or Congo.

Q: What did you learn from this private sector experience?

MO: The private sector exposure was fantastic. I’m bringing back to State a wealth of knowledge in monitoring and evaluation and emphasizing efficiency. I do have to admit that the time away also reinforced my love for the Foreign Service, our mission and our wonderful colleagues. My private sector teammates always found it fascinating that we get to travel the world on behalf of the country, and were every bit as interested in what we do day-to-day as I was of their work.

Morgan O’Brien’s views/opinions expressed on the blog/podcasts are not necessarily those of the State Department.

Check out the diplosport links below and while you’re at it, you might also check @SportsDiplomacy, the official Twitter account of exchanges.state.gov/sports

Sound Cloud: https://soundcloud.com/diplosport

iTunes: http://bit.ly/DiploSport

Google Play: http://bit.ly/2bUgvdI

Blog: http://www.diplosport.com/blog/

#

 

 

Congress “Examines” @StateDept FOIA Compliance, Talks Hillary, Hillarrry, Hillarrrrry

Posted: 4:20 pm ET

 

On September 8, the House Oversight and Reform Committee (HOGR) held a hearing Examining FOIA Compliance at the State Department. The hearing has four State Department officials as witnesses starting with Patrick Kennedy, the Under Secretary for Management and Janice Jacobs, the agency’s Transparency Coordinator. It also includes two staffers from the Executive Secretariat. Some members expressed appreciation for the work these officials have done, one referring to them as “clean-up” people at State.

For the most part, it’s the kind of theater that we’ve come to expect from the Congress. One member asked about the Yemen War and the arm sales to Saudi Arabia. In an FOIA hearing.  More than a couple members used the hearing to throw darts at the absent Hillary Clinton. No, no response required from any of the witnesses in those segments. Another member wants the State Department to go get Colin Powell’s emails from his tenure at the State Department. A member brought up Colin Powell’s role in the lead up to the Iraq War. There was a bit of discussion on retroactive classification and Foreign Government Information (FGI). Another member wanted to know the names of the people who are processing and redacting FOIA requests. We stopped watching when Chaffetz did a quiz show on what Congress should not be able to see.  We include the links below to the prepared statements of the State Department officials as well as the hearing page here, if you want to watch the video.

Oh, get ready, apparently over the next few days, the Committee will hold a couple more hearings like this. On September 12, it will hold a hearing on classification and redactions in FBI’s investigative file. On September 13, it will hold a hearing on the preservation of records at the State Department. This last one is also called an “examination.” By October, we might see hearings focusing on an Examination of the State Department’s Cafeteria Selection.  It remains to be seen if the next hearings will result in any findings at all, or if perhaps this is nothing but a roundabout way of getting folks an audition for spoken entertainment with Audible.

 

The Honorable Patrick F. Kennedy Under Secretary for Management U.S. Department of State Document
The Honorable Janice Jacobs Transparency Coordinator U.S. Department of State Document
Ms. Karin Lang Director, Executive Secretariat U.S. Department of State Document
Mr. Clarence N. Finney, Jr. Deputy Director for Correspondence, Records, and Staffing Division, Executive Secretariat U.S. Department of State Document

Here’s the GOP side talking about putting the “e” at the end of potato and Hilary Clinton.

Here’s the Dems talking about the GOP and Hillary Clinton.

Welcome to the next 60 days of depressing nightmare on the Hill, in addition to the other one unfolding on teeve. Excuse us now, we’ll just go find us some cats for therapy.

 

#

 

 

POTUS in China: A ‘Staircase Snub’, Shouting Matches, and an Apology For a ‘Mistaken’ Tweet

Posted: 2:30 am ET

 

 

#

 

 

Colin Powell Is Done Talking About Hillary Clinton’s Emails, So Let’s Take A Trip Down @StateDept Tech Lane

Posted: 1:27 am ET

 

After making waves for saying “Her people have been trying to pin it on me,” former Secretary of State Colin Powell is done talking about former Secretary of State Hillary Clinton’s emails and is not commenting anymore on it.

For those too young to remember this  — there was a time, not too long ago when the State Department communicated via teletype machines (with paper tape), similar to the one below.   You draft your cables on a Wang computer, give it to the local secretary to convert the document, and then she (almost always a she) runs it through the teletype machine for transmission to Main State and other diplomatic posts overseas.  If I remember right,  State had some creative IT folks who hooked up a DOS computer to the teletype machine so conversion was possible.  You still had to print it out and it still took a lot of trees.

Image via Open Tech School

 

When Colin Powell came to the State Department in 2001, the State Department was still using the Wang machine similar to the one below. They were either stand alone machines or were connected via a local area network and hooked up to a gigantic magnetic disc.  If post was lucky, it got one computer also hook up for email. Otherwise, you have a Selectric typewriter and a weekly diplomatic pouch.

Via Pinterest

Here is retired FSO Pater Van Buren with a look at technology at State during the Powell era.

When the rest of the world was working on PCs and using then-modern software in their offices, State clung to an old, clunky mainframe system made by the now-defunct company WANG. WANG’s version of a word processor was only a basic text editor with no font or formatting tools. Spell check was an option many locations did not have installed. IBM had bid on a contract to move State to PCs in 1990, but was rejected in favor of a renewal of the WANG mainframes.
[…]
Until Powell demanded the change, internet at State was limited to stand-alone, dial up access that had to be procured locally. Offices had, if they were lucky, one stand alone PC off in the corner connected to a noisy modem. If you wanted to use it, you needed in most cases to stand in line and wait your turn.
[…]
The way I see it, there’s about a 99.9 percent probability that he discussed his signature accomplishment at State with her, and cited his own limited, almost experimental, use of an AOL email account, as an example of how to break down the technical, security, bureaucratic, and cultural barriers that still plague the State Department today.

Read in full below:

 

#

 

 

State/OIG Reviews @StateDept Policies and Controls Protecting PII and National Security Data

Posted: 2:03 am ET

 

State/OIG recently posted online its review of the State Department’s policies and controls protecting personally identifiable information (PII) data and national security data. Below is an excerpt:

The Consolidated Appropriations Act, 2016,1 Section 406, Federal Computer Security, requires the Inspector General of each covered agency to submit a report that contains a description of controls utilized by covered agencies to protect sensitive information maintained, processed, and transmitted by a covered system. Specifically, the Consolidated Appropriations Act requires a description of controls utilized by covered agencies to protect two types of data contained within covered systems: personally identifiable information (PII) data and national security data. Information related to national security data is covered in a classified annex to this information report.
[…]
Specifically, Williams Adley selected and reviewed 4 systems from a Department-provided listing of 216 systems (Electronic Medical Records System (eMED), Integrated Personnel Management System (IPMS), Consular Consolidated Database (CCD), and Consular Lookout and Support System (CLASS)) that provide access to PII. In addition, Williams Adley reviewed 2 National Security Systems (NSS) from a Department-provided listing of 60 systems (Chief of Mission and Special Embassy Programs Database (NSDD 38), and Principal Officers Executive Management System (POEMS)).

This report describes the policies and controls used by the Department for five specific topics identified in the Act:

(1) logical access policies and practices;

The review found only two of the six systems reviewed (eMED and IPMS) had system-specific logical access control policies.

(2) logical access controls and multi-factor authentication used;

With respect to why logical access controls or multi-factor authentication are not being used, according to Department officials, two of the six systems (IPMS and one NSS) did not implement multi-factor authentication to govern system-level privileged user access because functional capabilities are not available. According to Department officials, IPMS is currently planning multi-factor implementation, while the one NSS is waiting for the Department to provide the functional capabilities necessary to implement multi-factor authentication to govern privileged user logical access.

(3) the reasons logical access controls or multi-factor authentication have not been used;

With respect to access and multi-factor authentication, Williams Adley found the Department has not fully implemented multi-factor authentication at the entity level; however, it had implemented other logical access compensating controls to govern privileged user access. Four of the six systems reviewed (eMED, CCD, CLASS, and one NSS) had either fully or partially implemented multi-factor authentication to government system-level privileged user logical access. The two systems that did not utilize multi-factor authentication to govern logical access of privileged users (IPMS and one NSS) relied on username and password combinations. Nevertheless, all six systems had some type of logical access controls in place.

(4) information security management practices used for covered systems;

With respect to information security management practices used for covered systems, Williams Adley found the Department uses a federated model to manage software inventory. In addition, the Department has implemented a defense-in-depth information system program. Further, the Department monitors network traffic, detects and responds to incidents, and scans for security compliance and vulnerabilities. However, the Department has only partially implemented a data loss prevention system and has not implemented digital rights management technology.

(5) policies and procedures that ensure information security management practices are effectively implemented by other entities such as contractors.

With respect to policies and procedures that ensure information security management practices are effectively implemented by other entities such as contractors, Williams Adley found the Department has a number of policies related to this topic. The relevant Department policies and procedures are established within the Department’s Foreign Affairs Manual (FAM).

The report notes that the Bureau of Information Resource Management, the Executive Secretariat’s Office of Information Resource Management, and the Bureau of Diplomatic Security, provided comments to a draft of the report. Because the comments were marked sensitive, the comments have been reprinted, in their entirety, in the classified annex of the report (AUD-IT- 16-45A).

The publicly available report is available here: https://oig.state.gov/system/files/aud-it-16-45.pdf

#

 

More Email Fallout and Security Clearance: @StateDept Says, “We’ll do it by the FAM.”

Posted: 4:22 am ET

The State Department has reportedly resumed its internal review related to the Clinton emails.  The spox refused to confirm “what specific materials” the State Department will consider or “what individuals may or may not be evaluated for possible employment or security clearance-related actions.” Note that this internal review is conducted by Diplomatic Security; perhaps due to public interest the results of the review may be released to the public, but that is not a given.

Via DPB dated July 15, 2016

We have additional information to provide about our internal review process. I will not be speaking about any specific case, nor will I be engaging in hypotheticals. As is standard, to protect the integrity of our work we cannot discuss the details of an ongoing review. Just as the FBI did not comment on its investigation, while it is ongoing we will not comment on our review.

That means I cannot confirm for you what specific materials we will consider or what individuals may or may not be evaluated for possible employment or security clearance-related actions. Our policy – so yes, it is —

QUESTION: What can you tell us?

MS TRUDEAU: It is moving. Yes, well, let’s go and I’ll give you exactly what we can.

Our policy is to assess each case on its own merits while taking into account all relative – relevant facts and circumstances. Furthermore, the department cannot comment on the status of any particular individual’s security clearance. Our goal is to complete this process thoroughly and expeditiously, but we will not put arbitrary deadlines on our work.

There is a significant amount of information about our process available to the public online. You’ll like this: For instance, I would point you to our Foreign Affairs Manual, specifically 12 FAM 500 and 230 sections. I’ll do my best to outline this process from the podium, but I cannot speak to every provision in the FAM. I also cannot speak to how the process will be applied to account for any specific circumstances.

In summary – and I still have a lot more to go, so stay with me – Diplomatic Security is responsible for evaluating security incidents and then reviewing them as appropriate for potential security clearance-related actions. Diplomatic Security is also responsible for referring certain incidents to our Bureau of Human Resources for potential employment actions. No matter the individual or conduct involved, the department conducts the review process in a professional, impartial, and fair manner that takes into account all relevant circumstances.

Multiple components within Diplomatic Security are involved in the process, supervised and overseen by the assistant secretary for Diplomatic Security. One component of Diplomatic Security conducts an initial assessment of security incidents and, when appropriate, issues security infractions or security violations. Security clearance reviews are conducted by a different DS component. As with Director Comey at the FBI and Attorney General Lynch at DOJ, it’s standard for our chief law enforcement officer, the assistant secretary for Diplomatic Security, to be involved with high-profile or complex matters, which is certainly the case here.

Assistant Secretary Greg Starr is the person in Diplomatic Security who is ultimately responsible for affirming or rejecting recommendations to revoke an individual’s security clearance. A decision to revoke a security clearance may be appealed to the Security Appeals Panel. Similarly, our human resource process can include multiple components, but ultimately Director General Arnold Chacon is responsible for taking disciplinary actions on an employee. That’s our process.

I know there’s questions about potential outcomes of the process. The short answer is that outcomes for any individual depend on their specific circumstances taking into account all of the relevant facts. This is what our review will determine. Current employees can face a range of employment discipline including reprimand, suspension, and termination. People with security clearances, including former employees, could have those clearances suspended and/or revoked.

We also maintain a security file on all personnel involved in security incidents. For individuals who no longer have a security clearance, the incident information is kept in their security file so it can be considered if they apply for a security clearance in the future. When evaluating whether a person remains eligible for access to classified information, the department follows the whole person approach based on the government-wide adjudication guidelines. Our Foreign Affairs Manual states that, quote, “Each case will be judged on its own merits,” end quote, based on specific, quote, “facts and circumstances,” end quote. Under the guidelines we can look at the severity of an incident, whether the person is a repeat offender, whether the individual is amenable to training or reform, and whether the incident was a technical violation or resulted in actual harm to national security.

As we have said, now that the FBI and DOJ have concluded their investigation, the department intends to conduct a review of Secretary Clinton’s emails according to our well established Security Incident Program. We’re preparing to conduct our review.

QUESTION: Okay.

MS TRUDEAU: So there’s a lot. Thank you for your patience.

QUESTION: Well, I’ve got to digest quite a few.

MS TRUDEAU: Yeah.

QUESTION: But be with me on this, because I’m trying to get my head around it.

MS TRUDEAU: Yeah.

QUESTION: So the question here is: Has the FBI handed over – and how many emails has the FBI handed over to be reviewed?

MS TRUDEAU: At this stage, we have not received any from the FBI.

QUESTION: Have they indicated to you when that’s going to be?

MS TRUDEAU: I have no timeline on that, but we have not received them.

QUESTION: And then on DS, are they the – do they have the final word? Would – does Greg Starr have the – Assistant Secretary Greg Starr have the final word on this? Or can Secretary Kerry or even the President overturn those decisions or have the final say?

MS TRUDEAU: So I said there is – as I mentioned, there is a significant amount of information about our process online. So for this particularly, look at section 230 and 500 of 12-FAM. The 500 section outlines the Security Incident Program, which is handled by the Program Applications Division of Diplomatic Security. The 230 section outlines the security clearance, which is administered by the Office of Personnel Security and Suitability, also within DS. Both components operate under the oversight and supervision of the assistant secretary for Diplomatic Security.

QUESTION: So when it comes to Diplomatic Security, is that withdrawn – as you’re investigating it, is that withdrawn at the end or is it withdrawn at the beginning? Is it frozen? How does that work?

MS TRUDEAU: So the process you’re talking about – and forgive me for the FAM references, but it’s really detailed and really specific. So if people are looking for the details on this, refer to 12-FAM 233.4. I’m going to refer you there. As a general matter, the suspension of a security clearance is available if Diplomatic Security determines it’s appropriate while they carry out their review. However, if you read the FAM, you’ll see it’s not an automatic process; whether or not to suspend a person’s clearance depends on the circumstances. It’s a judgment of the trained professionals in DS.

QUESTION: And then how unusual is it that Diplomatic Security – or how unusual is it that this process – that you use this process?

MS TRUDEAU: So I’m not – it’s – I’m not going to talk sort of precedent, but I would say that there is offices within Diplomatic Security, and this is their mandate. All of us within the department – and we’ve spoken about this; Secretary Kerry has spoken about this – have the obligation to safeguard and correctly handle information.

QUESTION: So would this also include former employees? It includes former employees, right?

MS TRUDEAU: As I’ve said.

QUESTION: As you said. Does it include employees that are not part of the State Department but might also be involved in this – in the emails?

MS TRUDEAU: Okay, I’m not going to speak, as I mentioned, to the specifics of any individual, any case. I just want to outline this broadly, bring you guys up to date on it, and give you the references, because it is such a technical and granular matter.

QUESTION: Yeah. But I mean, as you know, Secretary Kerry – Secretary Clinton has been involved in this, and a lot of people are wondering how this could affect her. So would you be able to make some kind of outcome whether it includes her or whether it includes somebody in a lower position? Is everybody going to be looked at equally?

MS TRUDEAU: Again, I just can’t speak to the specifics on who will be reviewed, what incidents will be reviewed. But I will say the review is taking place.

QUESTION: And you can’t tell us when this review is going to start?

MS TRUDEAU: No. No, they – the idea of projecting a timeline on this – we’ll say they’re committed to a fair, impartial, and absolutely rigorous process.

QUESTION: And when you say – just one more question.

MS TRUDEAU: Sure.

QUESTION: When the FBI says that it’s looking at thousands of withheld emails, that it’s going to give State thousands, you don’t know if it’s going to be thousands or if it’s going to be hundreds? You have no idea?

MS TRUDEAU: I couldn’t speak to the FBI documents.
[…]
QUESTION: Is Pat Kennedy going to be involved in any of this?

MS TRUDEAU: Okay, so thanks for the question.

QUESTION: I know there’s been some questions about that.

MS TRUDEAU: Yeah. So first, as we’ve said many times, Under Secretary Kennedy did not approve nor was he aware of the extent to which Secretary Clinton was using personal emails. No matter the individual or the conduct involved, the department will conduct and does conduct the security clearance process review in a professional, impartial, and fair manner that takes into account all relevant circumstances.

According to our Foreign Affairs Manual, the Under Secretary for Management Pat Kennedy becomes involved in a security clearance revocation in the event of an appeal. He is a member of a three-person panel that’s at the very end of our process. I’m not going to speculate that it’ll even get that far.

QUESTION: And you said Secretary Kerry is not going to be involved?

MS TRUDEAU: So Secretary Kerry will be informed of the details, the results of the review, after its completion. Again, I’m not going to speculate on outcomes or hypotheticals. As we’ve said many times from this podium, he wants this review done by the book, and the book requires Diplomatic Security lead and conduct this review.

QUESTION: And then just one more small one.

MS TRUDEAU: Sure.

QUESTION: Will the – so FAM is pretty clear that supervisors (inaudible) be held responsible for their subordinates’ actions. How are you going to deal with this? Is this —

MS TRUDEAU: That is – that’s something I think I’m not going to speculate on that. I’m not going – I can’t speak to the details of that. I can’t speak to the review. And honestly, I’m not going to get into hypotheticals on the review.

QUESTION: Yeah. And then are you going to deal it as one big infraction, or are you going to look at several —

MS TRUDEAU: Again —

QUESTION: You don’t know?

MS TRUDEAU: I can’t speak to how they’ll do it – specific incident, individuals. It’s just the review is happening.

QUESTION: Will they —

MS TRUDEAU: We’ll do it by the FAM.

#