NSW Police firewall admin confronted over WeChat

A NSW Police firewall security administrator of 17 years, who was let go for installing WeChat on a work computer and allegedly “being dishonest” when confronted, has unsuccessfully sought reinstatement.

The administrator, who had privileged access as part of his role, said he used WeChat “for troubleshooting and verifying intermittent internet access issues” and “to keep contactable with my parents”, according to a judgment from the NSW Industrial Relations Commission.

NSW Police alleged that WeChat amounted to “unapproved software” and that installing it went against documented policy.

The force further alleged that the administrator was “dishonest … when questioned about the installation of the unapproved software,” according to a summary of the alleged grounds for dismissal.

The administrator alleged he hadn’t ever seen a list of unapproved software; had not been trained in specific internal IT policies; and that he’d been unable to log into the WeChat app successfully in any event.

He was ultimately given the option to resign or be dismissed; he chose the former in mid-2024, but lodged an appeal with the commission.

Based solely on installing WeChat on a work computer, the dismissal would have been “unjust and harsh, and likely unreasonable”, commissioner Chris Muir wrote.

But the firewall security administrator’s explanations, in meetings and letters, ultimately provided grounds for dismissal, Muir concluded.

“The applicant was not a sworn officer of the New South Wales Police Force, but it is abundantly clear that the position of trust in which he was employed, even before there is consideration of the identity of the respondent, should have required him to be absolutely candid and honest in any dealings with his colleagues about the installation of software,” Muir wrote.

“The commission cannot be satisfied that the applicant would be candid and truthful in future dealings with the respondent if he were reinstated.”

The commission had problems with evidence and witnesses on both sides. 

In particular, NSW Police failed to prove that a specific IT policy was breached by installing WeChat.

The force also could not point to specific related training content, and its witnesses could not explain how system logs supported their case. They also conceded that no allow- or deny-list of approved and restricted apps existed.

However, the commission could not get past “the paradox of a senior employee, engaged in a role charged with protecting the respondent’s information technology systems, asserting that he was unaware that it was improper for him to use his privileged access to install unapproved software to his work computer” – and ultimately found in the NSW Police’s favour.

Asked by iTnews whether it has since addressed any potential deficiencies in its security posture or training, a NSW Police spokesperson declined to comment.