I am researching a solution for secure communications that can be shared among a number of small, independent journalists. In the initial instance the journalists will be within a reasonably small geographic area, so data may be transferred by taking a USB on a short car drive.
By pooling resources the journalists may establish a more professional setup than any could afford as individuals/small organisations. The shared setup would include enterprise-grade hardware, a business-grade internet connection, access to the full range of technical skills, solid physical security, and strong network security.
Has SecureDrop been used in a shared-scenario such as this? Is it appropriate for such a scenario? Are there any pitfalls? And what are the additional risks or considerations of this mode of operation?