9-11 is old news, and I trust those security flaws have been patched.

Having lower level people with access to sensitive decrypted messages is a recipe for trouble.

As far as the Aldrich Ames and Robert Hanssen matters, where the raw information was their legitimate domain, the normal security procedures were bypassed for these folks. If followed, they would have been stopped early on. Heads should have rolled.

(And the same with the 9-11 event. Enough was known to stop these people, but as Condi said, it didn’t rise to the level etc. One wonders what information had risen to the level which was occupying their attention if that matter wasn’t important enough.)

“Low-level” persons have always had access to TS data, for the simple matter of doing jobs the “high-levels” don’t want to do, or simply do not have time for. I don’t see this practice ever changing.

All persons, regardless of employment “level,” who handle TS data will have a TS clearance, involving FBI background checks. These background checks involve the person’s past, but has no follow-up procedure to verify whether a person’s current motivation has or has not changed. This has been the issue for decades, and it won’t be changing anytime soon. Criminal mindsets (basic humans with the pressure of living under a daily microscope) exist in TS facilities, they simply have not yet turned, and many never will.

One day, perhaps security procedures will change, but the expense involved with followup investigations for each and every employee handling confidential, secret, and/or top secret data, be they .com (civilian, or contractor) or .gov (government agency, military, et al) would likely be staggering.