Blog

 
     

Congressional IT Contractor Didn’t Pass a Background Check

By Michael Klazema on 5/15/2018

An IT contractor who had access to email servers for United States House of Representatives members worked without a background check, according to a report from security and risk management publication CSO. The contractor, Imran Awan, is currently facing fraud charges and a class-action lawsuit.

Emails leaked as part of the 2016 Democratic National Committee (DNC) hack indicate Awan was a go-to source when members of the House of Representatives needed IT assistance. Reps would contact Awan if they forgot their passwords. The CSO article indicates roughly 80 members of Congress had contact with Awan over the years.

Given this role and its inherent access to sensitive information, Awan appeared to be in line to obtain a government security clearance—or at least undergo a thorough background check. According to CSO, workers who are members of the “Congressional administrative staff” are not required to obtain national security clearances but are expected to undergo background checks. The Committee on House Administration guidelines include a section concerning shared staff—the category into which Awan would fit—and the vetting expectations for those employees.

Based on Congressional guidelines, Awan should have at least passed a “Capitol Police Criminal History Records Check.” This type of check would be the equivalent of a state criminal history check for the District of Columbia. The CSO article does not mention whether Congressional administrative staff are supposed to have any screenings beyond this criminal check—such as criminal searches outside of Washington, D.C.employment verification checks, or identity checks.

Why was Awan’s background check overlooked? The answer might be found in the wording of the Committee on House Administration guidelines. The guidelines state “it is recommended that Member and Committee offices” request a background check for shared employees due to the sensitive information those employees often access during their work. “Recommended” is the key word in that sentence: Congressional departments are not technically required to conduct background checks on shared administrative staff.

When authorizing someone to provide IT services, a House member can conduct the background check, but they can also check a box that says, “I have verified that a trustworthiness determination has been made on behalf of this shared resource by another Member.” In other words, if another member has already run a background check on a “shared resource,” that member can offer an attestation of trustworthiness for the resource.

Evidence shows many Congress members used this method to approve Awan to provide IT resources. However, no one could identify who initially attested to Awan’s trustworthiness, which means no one can verify a background check ever took place.

Awan is currently under investigation for bank fraud and potential involvement in a “cyber breach operation” during his time as a Congressional aide. There have also been accusations that Awan accessed information or servers he shouldn’t have, something that may have been prevented had he been required to pass a background check.

 

Sources: 

https://www.csoonline.com/article/3268236/security/no-congressional-background-check-for-it-contractor-charged-with-fraud.html

http://www.foxnews.com/politics/2018/05/04/ex-dem-it-aide-imran-awan-s-case-hit-with-repeated-delays-as-feds-probe-new-allegations.html


Tag Cloud
Categories
Recent Posts

Latest News

  • February 18

    Many hiring decisions are based mostly on candidates’ past work experiences. Here’s how a background check can verify employers to make sure those hiring decisions are grounded in fact.


  • February 14 As more states legalize various forms of marijuana, past marijuana convictions are still causing concern while uncertainty over substances such as CBD drives new arrests. 
  • February 12 A new bill in the New York State legislature could add new requirements for school employee background checks. Currently, private schools are not required to follow state mandates regarding background checks.
  • February 07 Some parents in El Paso, Texas have been left wondering about the strength of their city's youth sports procedures after a felon fraudulently took funds for a girls' soccer team.
  • February 06 If there is one way that volunteer organizations could serve their communities better, it’s implementing more thorough volunteer screening policies.
  • February 05 Madison County, Illinois has created a new initiative designed to help individuals overcome barriers to employment. Clients of the initiative will be able to explore criminal record expungement among other options.
  • February 01 An OfficeTeam survey found that the two most common forms of resume dishonesty had to do with past employers: job experience and job duties or responsibilities.
  • January 31 During the longest government shutdown in U.S. history, hundreds of thousands of federal employees have gone without work for more than a month. Some are finding temporary alternatives elsewhere.
  • January 29 A Florida nurse has been arrested for allegedly stealing two types of prescription pain medications from the county jail where she worked. The case highlights the importance of rigorous drug testing procedures for employment situations in which employees have access to prescription drugs.
  • January 24 After the airline failed to adequately disclose to applicants that they would undergo a background check, a court has ruled Delta did not meet its legislative obligations. The settlement highlights the importance of rigorous compliance.