I appreciate that.
In your view, from a security vantage point, what more could PHAC have done? These individuals we're talking about are employees from the early 2000s. This is not an infiltration operation. This is an operation where they were ultimately co-opted down the road of their careers, which strikes me as a more challenging thing to screen, all things considered.
I wonder what your view is as the director of CSIS. What more could and should PHAC have done in the circumstances to mitigate the risks that ultimately were realized?