You should not assume that no one on your network is compromised. This is part of the thinking behind 0 trust.