SMO: Government Links





<ILAYER src="http://www.securitymanagement.com/security-bin/adspro/files/ads.pl?campaign=2&refresh=10&type=iframe&color=FFFFFF" height="60" width="468" visibility="show" z-index="10"></ILAYER>

Government Documents

For new news alert feature. Check out our sample E-Letter.

GAO Reports

A new report from the Government Accountability Office (GAO) says the Emergency Management Assistance Compact (EMAC) can further build administrative capacity to support its network and develop and formalize procedures for its members responding to a disaster.
It's not that hard to acquire the materials needed to produce a "dirty bomb," the Government Accountability Office (GAO) reported in a congressional hearing yesterday.
Six DHS background screening programs are examined by the GAO and found to be duplicative of one another, resulting in widespread redundancies and other inefficiencies.
See what the GAO has to say about the Immigration and Customs Enforcement (ICE) effort to modernize its information technology infrastructure. The GAO’s overriding critique: “[T]he program has not fully achieved many performance goals that it set out to accomplish over the past year
The U.S. Transportation Security Administration and Customs and Border Protection have tried to secure inbound air cargo, says the GAO, but their efforts need to be strengthened.
Six DHS background screening programs are examined by the GAO and found to be duplicative of one another, resulting in widespread redundancies and other inefficiencies.
A new report from the Government Accountability Office discusses U.S. efforts to forestall the onset of avian and pandemic influenza and identify at risk countries, although challenges have emerged.

The report explains the U.S. have identified at risk countries for assistance, but there is no way to compare countries at risk to assess which countries are most at risk.

U.S. Agency for International Development (USAID) assesses countries by environmental risk - "considering factors such as disease presence and the likelihood of transmission from nearby countries, but factors such as limited understanding of the role of poultry trade or wild birds constrain the reliability of the conclusions." By USAID assessments, East Asian countries are most at risk of an influenza pandemic. To determine country preparedness, USAID, along with partners such as the State Department and the United Nations, has distributed questionnaires worldwide, but the report notes these "efforts do not provide a basis for making comprehensive global comparisons."

The Homeland Security Council has also singled out countries that warrant the most extensive assistance, yet it admits these designations are made from limited information. The council groups countries into four categories:

At-risk countries: Unaffected countries with insufficient medical, public health, or veterinary capacity to prevent, detect, or contain influenza with pandemic potential.

High-risk countries: At-risk countries located in proximity to affected countries, or in which a wildlife case of influenza with pandemic potential has been detected.

Affected countries: At-risk countries experiencing widespread and recurring or isolated cases in humans or domestic animals of influenza with human pandemic potential.

Priority countries: High-risk or affected countries meriting special attention because of the severity of their outbreaks, their strategic importance, their regional role, or foreign policy priorities.
Based on these categories, the council identified 19 U.S. priority countries, including Egypt, Afghanistan, Indonesia, and many countries in Southeast Asia. These countries will receive the greatest attention from the U.S.'s international pandemic preparedness efforts.

The GAO also singles out the U.S. for its role in improving global preparedness for avian and influenza preparedness. Of the $1.4 billion given by international donors, the U.S. has contributed $377 million or 27 percent of all funds.

New report: by GAO
A government report examining how well schools prepare for emergencies finds that most have multihazard plans but "an estimated 56 percent of all school districts have not employed any procedures in their plans for continuing student education in the event of an extended school closure, such as might occur during a pandemic, and many do not include procedures for special needs students. Fewer than half of districts with emergency plans involve community partners when developing and updating these plans. Finally, school districts are generally not training with first responders or community partners on how to implement their school district emergency plans." Read the full Government Accountability Report.
First responder communications in four states and 11 localities were reviewed by the GAO to assess how well homeland security grant money is being spent.
GAO released a critical report on Deepwater in March while Sen. Maria Cantwell (D-WA) has held hearings in February and April in which USCG admirals have been skewered.
The title of the latest GAO report says it all: "Much Work Remains to Improve Communications Interoperability." The study, issued April 2, 2007, looks at how effectively state and local governments have spent $2.15 billion in homeland security grant funding aimed at improving the interoperability of first-responder communications in an emergency. The agency examined four states and 11 localities. One problem: States have purchased fewer, more expensive radios that were supposed to be interoperable because they met so-called Project 25 standards, but because the standards vendors were trying to meet were ambiguous and because there was no compliance testing, the radios may not actually communicate, concludes the GAO.
7 The number, in millions of dollars, recovered from funds originally paid out in potentially improper or fraudulent payments by the federal government for Hurricanes Katrina and Rita. That’s out of $290 million in improper payments identified by the Federal Emergency Management Agency and $1 billion in improper payments estimated by the Government Accountability Office (GAO). @ Learn the details at SM Online.
Millions of visitors are screened for terrorism links through government watch lists. A report from the Government Accountability Office examines the effectiveness of the screening process and notes that many people are misidentified as terrorists because they have names similar to those on watch lists.
Measuring and predicting losses that might occur from unconventional weapons is rife with difficulties, as this GAO report discusses.
The GAO gives recommendations to the Defense Department on how to improve the response to an attack on mail facilities.
Privacy issues that arise when companies outsource services involving clients’ personal health information are examined in this GAO report.
Efforts to reduce piracy and counterfeiting of goods are reviewed in this GAO report.
Efforts to reduce piracy and counterfeiting of goods are reviewed in this GAO report.
GAO reports that DHS should DHS should address key challenges before implementing the TWIC program.
Although Italy and the United States have close counterterrorism ties, U.S. agencies weren’t able to formally assess Italy’s operational security plans due to lack of access to sensitive information. They improvised by using “established relationships with their Italian counterparts to develop a working knowledge of Italy’s plans and capabilities for providing security,” according to a GAO report. @ Read the report at SM Online.
Specific measures aimed at preventing data breaches are delineated in this GAO report.
The GAO has issued a report on privacy laws and data brokers, finding that brokers are not required by law to safeguard data they have collected.
There are so many threats in Iraq that it’s hard to know where to start: foreign jihadists, Shiite radicals, Baath party loyalists, and garden-variety criminals, to name a few. Add one unexpected threat to that list: private security providers. The U.S. Government Accountability Office has warned that the lack of criminal-background data on prospective private security personnel puts U.S. military forces and Iraqi civilians at risk. The threat is mainly from Iraqi and third-country personnel, testified William Solis, GAO’s director of defense capabilities and management, before the House Committee on Government Reform’s Subcommittee on National Security, Emerging Threats, and International Relations. @ The testimony is at SM Online.
Not long after a data breach involving the Department of Veterans Affairs, David M. Walker, Comptroller General of the United States and head of the Government Accountability Office, gave testimony to a House committee on steps that can be taken to reduce the likelihood of personal data being stolen. The first is to conduct a privacy-impact assessment before deploying new systems; Walker noted that agencies do not always do this. He also recommended limiting the collection of personal information, and limiting the time that such information is retained. @ Privacy: Preventing and Responding to Improper Disclosures of Personal Information is available at SM Online.
Why aren’t more airports opting out of using federal screeners? Read about the issue in a report from the Government Accountability Office.
A GAO report recommends learning lessons from rail security practices implemented in Europe.
The Transportation Security Administration (TSA) has issued a proposed rule relating to the Transportation Worker Identification Credential (TWIC). Under this program all people who have unescorted access to secure areas of ports and vessels will be required to carry the TWIC card. As set out in the rule, TSA would collect names, personal information, fingerprints, and photos on all applicants for the card. TSA would also perform background checks including those for criminal history, terrorist activity, immigration status, and outstanding warrants. The TWIC will be a smart card and will include a biometric feature. According to the proposed rule, more than 750,000 people will be required to obtain the card. The TSA expects that workers will have to pay approximately $139 to obtain the TWIC card. The card will be valid for five years. @ To read the entire proposed rule, visit Security Management Online.
Suggestions for improving the US-VISIT program, such as better assessment of security risks, are offered in this report.
The Chemical Facility Anti-Terrorism Act of 2005 calls for security to be increased to protect against terrorist attacks at chemical facilities.
Chemical plant security continues to be found wanting. Problems are being examined in congressional hearings and by the GAO.
The Department of Homeland Security’s (DHS’s) American Shield Initiative (ASI)—a program of sensors, cameras, and databases that monitor U.S. land borders—lacks “key management capabilities” and has failed to define “key acquisition management processes,” such as those for tracking and overseeing contractors, says a report from the Government Accountability Office (GAO). The auditors note that DHS has not fully staffed the ASI program office and has only defined roles and responsibilities for 3 of 47 positions.
Risk assessments and protective measures for ports of entry and other critical infrastructure must be revised, says a report by the GAO.
North Korea and Iran present probably the biggest threat of rogue nations gaining nuclear weapons. Other countries pose a danger as well, but a main watchdog over nuclear weapons, the International Atomic Energy Agency (IAEA), is hampered in its ability to ensure that nations are not developing clandestine weapons programs. @ The GAO report, including recommendations for future action, is at SM Online.
Insurers and financiers have mastered the skill of risk management, which entails anticipating future events, deciding which of those expected risks the organization will bear, and allocating resources to mitigate the rest. @ SM Online has the report.
While the international body charged with containing the spread of nuclear bomb technology has made progress, it still faces many challenges, according to a government study.
GAO report looks at trends in attacks on Colombian pipelines.
CIOs should develop IT plans to support their companies’ overall business objectives.
According to the GAO report the government needs to strengthen the security of domestic air cargo.
Report by the Government Accountability Office(GAO), notes that the TSA still has not set timelines for the completion of risk assessments for passenger rail systems or the establishment of a methodology for analyzing and characterizing identified risks.
The Government Accounting Office (GAO) has also looked at progress at the Department of State, the Department of Homeland Security, and other agencies in strengthening the visa process. Among the improvements, the GAO says, consular officers at eight posts, including those of interest to antiterrorism efforts, now “regard security as their top priority.” @ The full report can be found at SM Online .
The rise of Islamic extremism is examined in a new GAO report. Thereport evaluates what U.S. government agencies are doing to identify, monitor, and counter support and funding for the global propagation of Islamic extremism. It also takes a look at what the government and other entities have reported regarding support and funding for the global propagation of Islamic extremism. Also addressed are the efforts taken by the Saudi government to counter Islamic extremism within the borders of its country.” @ Get the full report via SM Online.
The actions TSA has taken to develop guidance and standards for flight and cabin crew security training and to measure the effectiveness of such mandatory training are reviewed in a GAO report. The study also details the efforts TSA has taken to develop a voluntary self-defense training program.The GAO found several weaknesses in the training, including a lack of recurrent training and the lack of a realistic training environment. “TSA has also not yet established performance measures for the program or established a time frame for evaluating the program’s effectiveness,” the report says. @ A link to the full report can be found at SM online
The Department of Defense (DoD) is using radio frequency ID (RFID) tags throughout its supply-chain operations; by January 2007, all DoD commodities will have these tags. The Government Accountability Office (GAO) reports that the Pentagon has identified many of the challenges it needs to resolve before this can happen but notes that “it has not yet developed a comprehensive strategic management approach” to guide, monitor, and assess implementation. @ Read the full GAO report at SM Online.
To enhance coordination with private security personnel in Iraq, the Pentagon opened the Reconstruction Operations Center last year. Its goal was to share intelligence and coordinate military actions with private security contractors. The center has improved coordination between the military and the private sector, but some problems remain, according to the GAO.
Federal agencies are data mining personal information for a variety of purposes, from detecting fraud and abuse in government programs to finding evidence of criminal activities. Five data-mining efforts examined by the Government Accountability Office (GAO) took many of the necessary steps required by related laws and regulations, such as notifying the general public that personal information was being collected. However, the GAOnoted that not all these efforts complied with related laws and guidance, such as completing privacy assessments or notifying individuals that information was being collected.
GAO report that predated Katrina is nonetheless right on point in looking at the dangers of a federal response effort that focuses too heavily on terrorism. The report, DHS’ Efforts to Enhance First Responders’ All-Hazards Capabilities Continue to Evolve, analyzed the effectiveness of an all-hazards approach to emergency response and found that in some cases state preparedness officials and first responders were frustrated by DHS’s emphasis on grant funding related to terrorism.
The GAO recently released a report addressing the rise of Islamic extremism around the world.
In wake of Katrina GAO details unheeded recommendations.
Accused by the Government Accountability Office (GAO) of not being able to ensure that its oversight of contractors under foreign ownership, control, or influence is adequate, the Department of Defense has responded by blasting the GAO for a “lack of understanding" of national policy on contractor access to classified data.@. The report and comments are on SM Online
If you've been to the Lincoln Memorial recently, you've noticed that the epic grandeur of the edifice is aesthetically tainted by the presence of Jersey barriers lining the circular roadway that surrounds the memorial. Or maybe you recall the temporary security fencing that blighted the view of the Washington Monument. Such measures were erected hastily after 9-11 while planners worked on designs for longer-term solutions that balance security with aesthetics. But some permanent security landscaping has been unveiled at the Washington Monument and similar upgrades are at various stages of completion at other venues along the Mall. @ Read the report.
Many core components of the Department of Homeland Security (DHS) have weak information-security practices and controls in areas such as risk assessment, security testing and evaluation, and remedial action plans, according to a Government Accountability Office report. The report concluded that DHS’s “ability to protect its information and information systems will be limited” until these weaknesses are corrected.@ SM Online has the report.
The Department of Homeland Security (DHS) has “a lot of work ahead” before it fully addresses its cybersecurity-related responsibilities, according to a recent report to Congress by the Government Accountability Office (GAO).
The GAO reports on how to strengthen the Department of Homeland Security's management of the Visa Security Program to improve border security.
Government agencies are not taking the proper procedures to ensure that wireless networks are secure, leaving their networks susceptible to attack. That is the alarming conclusion of a Government Accountability Office(GAO) study of security controls at 24 agencies and assessments of wireless security at six federal agencies in the nation’s capital. Information Security: Federal Agencies Need to Improve Controls over Wireless Networks is on SM Online.
GAO identified about 400 different products designed to adulterate urine samples, not to mention many other products sold to “dilute, cleanse, or substitute urine specimens submitted to testers by drug users.” Read the testimony at SM Online.
The GAO has released a study of problems with restricted airspace violations and how to improve security.
A congressional hearing andGAO report examine problems with passport fraud. One finding: 69-percent of the passport fraud cases detected last year were accomplished with the use of fraudulent birth certificates and other false identification. Link to the testimony.
Shouting “fire” in a crowded theater is a no-no, but what’s worse is not having adequate fire protection in that same crowded theater. The U.S. Government Accountability Office (GAO) has found that Washington D.C.’s Kennedy Center does not appear to comply with some fire-safety requirements. Auditors found, for instance, that there was no program for managing the storage of scenery, props, and other combustible materials.GAO testimony on the topic is at SM Online.
In any tabletop exercise involving multiple authorities and jurisdictions, it’s virtually certain that some of the lessons learned involve the need for better coordination, clear lines of authority, and improved information sharing. And so it has been with Coast Guard exercises on portsecurity, says the Government Accountability Office (GAO). According to GAO auditors, 59 percent of the 82 exercises studied raised communica tion issues,including problems with interoperable radio communications, failure to share information with other agencies, and difficulties in accessing necessary classified information. Almost as many exercises were plagued with resource problems, including poor facilities or equipment. Forty-one percent of theexercises raised concerns about the participants’ ability to coordinate a command and control system, for example. Part of the problem, acknowledges theGAO, is that the National Response Plan, launched in January, wasn’t in place during the exercises. That plan supercedes all existing federal interagencyemergency response plans. SM Online takes you to the report.
Improving strategic planning, developing an information technology management structure, and enforcing financial spending and oversight are just several key management challenges facing the Department of Homeland Security, according to a GAOreport.
With so many "stovepipes" in the federal government, it is hard to smoke out the overall effects of efforts at reducing and securing materials in the former Soviet Union and beyond. The Departments of Defense (DoD), Energy (DOE), State, Commerce, and Homeland Security all have a piece of the action. Most programs come from DoD and DOE and, although their threat-reduction and nonproliferation plans are similar, they have "not always been well coordinated," according to a report by the Government Accountability Office (GAO). For example, both departments have programs to improve border security. But officials from each department told GAO auditors that "agencies' roles are not defined, information sharing is infrequent, and there are no procedures to resolve differences among agencies." Previous attempts to integrate some DoD and DOE programs have, however, succeeded, the auditors noted. The report is on SM Online.
Federal agencies are not consistently implementing the basics of information security, such as performing periodic risk assessments, developing and maintaining up-to-date security plans, creating and testing contingency plans, and evaluating and monitoring the effectiveness of security controls, according to a report from the Government Accountability Office (GAO). @Link to Protecting the Federal Government's Information Systems and the Nation's Critical Infrastructures .
In a recent report, the Government Accountability Office (GAO) reviewed the Coast Guard's progress in conducting threat assessments on the nation's most valuable ports. The GAO found that the assessment efforts already conducted were often duplicated by the ports themselves when applying for homeland security grants. Also, many assessments proved more expensive and less useful than anticipated. To help address these problems, notes the report, the Coast Guard implemented a geographic information system (GIS), a computer mapping system that has many information layers so that information can be easily updated and retrieved. However, though the system holds promise, the GAO voiced concern that not enough planning has been done to ensure that the system works consistently and at a reasonable cost. The Coast Guard responded positively to the report and agreed to take the recommended steps to define the functional requirements of the GIS system and to develop a plan for long-term implementation. @ The full report is available at SM Online.
We deliver for you," the U.S. Postal Service likes to say in its ads. Delivery of physical security for its facilities hasn't been as regular, however. GAO site visits to 13 "core facilities revealed a number of security problems," including unaccounted-for keys, deactivated alarms, unlocked gates, unsecured stamps, and employees without ID badges. On the positive side, the USPS has specified security requirements for core facilities and has made gains in carrying these out. @ SM Online has the GAO report on the audit
GAO auditors came up with a set of best practices that regional governmental bodies can adopt. They include making sure to have representation from diverse jurisdictions and stakeholders, developing strategic plans with quantifiable goals, and finding out how to take advantage of federal grants.
GAO examined progress made by the financial markets in improving disaster preparedness. Improvements included greater protection of networks from hackers, geographically removed backup facilities, creation of a private network for routing data between broker-dealers and various markets, and the issuance of business continuity guidelines.
Diploma mills.Yes, there really is a company operating on the Internet as Degrees-R-Us, and GAO auditors purchased bogus degrees from a fictitious university from the company, according to Robert J. Cramer, who testified before the House Subcommittee on 21st Century Competitiveness, Committee on Education and the Workforce. The GAO also set up its own diploma mill and was able to obtain certification from the Department of Education to enroll in the Federal Family Education Loan Program. Finally, GAO auditors determined that some senior-level federal employees have obtained degrees from diploma mills, though specific numbers couldn't be determined.
Intelligence reform. Because significant changes in large organizations can take at least five to seven years, Congress might want to address the transformation of the intelligence community by lengthening the terms of directors, testified the GAO's J. Christopher Mihm before the Subcommittee on Oversight of Government Management, the Federal Workforce, and the District of Columbia, of the Committee on Governmental Affairs. He also spoke about how the FBI has been matching special agents and analysts with critical skills to address its top priorities, a model that the intelligence community might want to follow.
Nuclear security. While the Nuclear Regulatory Commission (NRC) has bolstered security at nuclear plants since 9-11, the GAO cannot yet say whether each plant "has taken reasonable and appropriate steps to address the new design-basis threat," which establishes the maximum terrorist threat that a facility must defend against. Security plans reviewed by GAO lacked "important site-specific information," including where responding guards were to be stationed. Moreover, the GAOnoted that the NRC isn't sharing with plants lessons learned from inspections at those plants.
Fed Ex likes to say that it runs the tightest ship in the shipping business. It's the Coast Guard's mandate to run the tightest ship in the ship business, however, and to that end it is developing an automatic identification system (AIS) to monitor ships traveling to and through U.S. waters. A GAO review shows various challenges, such as whether local port authorities are willing to pay for some of the cost of the infrastructure needed to make it work.
Two new reports look into changing responsibilities of federal law enforcement. One explores the transfer of the Federal Protective Service (FPS) to the Department of Homeland Security, noting that although FPS's mission has expanded, it does not have a transformation strategy to address this expanding mission. A second report analyzes the FBI's transformation to increase its focus on homeland security. Have the FBI's efforts to combat drug, white-collar, and violent crime suffered as a result? The results are mixed, say GAO auditors.
The GAO Reports. Information sharing. Although the Department of Homeland Security (DHS) has taken actions to implement the public-private partnership called for by federal critical infrastructure protection policy, "it has not yet developed a plan that describes how it would carry out its information-sharing responsibilities and relationships." GAO auditors recommend that DHS describe the roles and responsibilities of DHS, information sharing and analysis centers (ISACs), and other stakeholders. The GAO also recommends that the DHS create policies and procedures for sharing information provided by ISACs amongst its departments.
Border security. In June 2003, the GAO recommended that the visa revocation process needed to be upgraded. But a GAO review of visas revoked in late 2003 shows that the process is still inefficient. For example, in at least three of 35 cases reviewed by auditors, it took the State Department six months or more to revoke visas after being advised to do so. Despite various improvements this year, weaknesses remain. The GAO suggests that State and DHS better coordinate with one another and establish performance standards, such as specific time frames, for completing each step in the process.
First responders. No one is really sure how interoperable public safety wireless communications systems are with one another. The DHS intends to do a survey on the topic, with results available by next year. In the meantime, the GAO suggests that the federal government develop national requirements and a national architecture for such systems, create nationwide databases, and provide financial and technical support to states and localities to help them make their systems interoperable. For their part, states should establish bodies to develop interoperability improvement plans. (Relatedly, see "Tech Talk" on page 46 for an item on a first responders interoperability survey.)
Fire safety. Nursing home fires in Hartford, Connecticut, and Nashville, Tennessee, last year killed 31 residents. As old facilities grandfathered from federal fire-safety standards on new facilities, neither had sprinkler systems. The GAO has called for the federal government to work with the National Fire Protection Association to strengthen fire-safety standards and to improve oversight of nursing home fire safety, such as by reviewing exemptions granted to facilities without sprinklers.
The Student and Exchange Visitor Information System (SEVIS), which was criticized when it was started by the Department of Homeland Security (DHS) in July 2002, is now showing signs of improvement, according to the GAO.
The GAO report notes that the TSA still does not require criminal record checks or security awareness training for all airport employees as required by law. Similarly, the TSA has not required airport vendors to develop security programs. And while programs have been launched to investigate perimeter security and biometrics technology, implementation and funding plans remain nebulous.
A newreport from the Government Accountability Office (GAO)--formerly the General Accounting Office--concludes that the Coast Guard's plan to review all vessel security plans has faced numerous challenges and should be updated. As of the beginning of June, the report notes, the Coast Guard had reviewed only half of the 6,400 vessel plans submitted by the July 1 deadline set out in federal law.
The GAO studied the Federal Aviation Administration's enforcement efforts related to safety violations and found that because the FAA has not evaluated the effect of its enforcement actions, it cannot be sure whether those actions had any deterrent effect.
Two new GAO reports discuss border security and homeland security. The first is "Border Security: Additional Actions Needed to Eliminate Weaknesses in the Visa Revocation Process." The second is "Homeland Security: Communication Protocols and Risk Communication Principles Can Assist in Refining the Advisory System."
The level of preparedness for an attack against the U.S. nuclear infrastructure continues to be hotly debated among congressmen. In its latest query to the GAO,the House Subcommittee on National Security, Emerging Threats, and International Relations of the Committee on Government Reform asked about the Department of Energy's (DOE's) continuing response to the September 11 attacks. While stepped-up security has increased deterrence at nuclear sites, say GAO auditors, "it has been expensive and has resulted in fatigue, retention problems, and less training for most sites' protective forces."
Security is only as strong as the weakest link in the chain, so even organizations with the most well-thought-out security programs can be jeopardized if their partners' security practices are lax. This is true of the Department of Defense as well its Defense Security Service, which monitors the information-security programs of more than 11,000 contractors, "cannot identify systemic vulnerabilities and make corrective changes to reduce the risk of information compromise" from contractors. The GAO report, which includes Haave's response, is at SM Online
In a recent report on cargo security, the General Accounting Office (GAO) noted that while U.S. Customs and Border Protection (CBP) has taken steps to increase the security of cargo containers, it has failed to address the potential tampering of such containers. It has also failed to analyze various forms of cargo to assess specific risk factors.
The GAO has issued reports on FBI efforts to address counterterrorism demands with limited personnel and on the Department of Homeland Security's method for tracking persons who overstay their allotted time in the U.S. organizations to obtain information about federal grant programs and funding available for first responders and terrorism-preparedness programs.
The GAO has testified to Congress regarding the airport screener program and the performance of public (federally employed) and private contract staff. The report notes, among other findings, that the Transportation Security Administration did not give private contractors much latitude to implement innovations.In addition, the Department of Homeland Security has released its report on how private airport screeners have performed, which was conducted by BearingPoint. Among the findings, the DHS says, is that "There is no evidence that any of the five privately screened airports performed below the average level of federalized airports. The report concludes there is credible data that in some areas, Kansas City private screeners performed above the average level of their federal counterparts." DHS's release further notes that "Costs for the five privately screened airports were not significantly different from the estimated cost of a federal screening operation at the same airport." With regard to performance, however, the agency says, "Performance was mixed in the larger airports and inconclusive at smaller ones. Generally, at the larger airports passengers had less confidence in the private security process, but their average wait time was slightly shorter. For the smaller airports, there was not enough data available to support any conclusion."
Is the Homeland Security Advisory System working? Although users initially expressed concerns, more recently they have expressed satisfaction. For example, most federal agencies surveyed by the GAO said that the guidance and information they received was timely and helpful. But they also would have benefited from threat information specific to regions, sectors, sites, or events, they said.
Some of the vulnerable areas cited in the aforementioned report, including border and cargo security, have been the subject of recent scrutiny by the U.S. General Accounting Office (GAO). GAO auditors, for instance, recently checked on the status of the US-VISIT (United States Visitor and Immigrant Status Indicator Technology) program, finding that it is "inherently risky, both because of the type of program it is and because of the way it is being managed." Specifically, US-VISIT is inherently risky because it is responsible for a critical, multifaceted mission; has a large and complex scope; must meet a demanding implementation schedule; and entails enormous cost. Risks relating to management include initial reliance on integrating existing systems that have problems. In testimony on cargo inspection, the GAO's Richard M. Stana noted that the Department of HHomeland Security's U.S. Customs and Border Protection (CBP) fails to incorporate key elements of a risk management framework in its approach to risks posed by oceangoing cargo containers. CBP, Stana told the Subcommittee on Oversight and Investigations, House Committee on Energy and Commerce, hasn't determined the level of risk for cargo or the responses necessary to mitigate that risk. Moreover, CBP hasn't subjected its method of selecting and inspecting cargo containers to external peer review or testing, he said.
Many companies continually review and retool the policies and procedures they will implement as the national alert level rises, often relying on internal assessments or benchmarking with other firms to establish these measures. To aid public first responders in pegging fire and emergency-service preparedness to homeland security alert levels, the Federal Emergency Management Agency has issued a list of recommended measures for each level, which can also be adopted by private businesses. For example, an "elevated" alert level (yellow) would call for contacting law enforcement at least weekly to exchange and disseminate threat and intelligence information. A "high" condition (orange) would increase this contact to daily, while "severe" (red) would call for more frequent communication if necessary. The red level would also call for shutting down nonessential networks and computer systems and having businesses prepare to support short-term housing for employees and families. For each level beyond a baseline set of preparatory actions, measures are divided into one of four categories: information/planning, facility security, personnel, and operations. SM Online links you to the guide.
In January 2004, Congress passed legislation to restrict aerial-advertising aircraft--small aircraft that tow advertising banners--over stadiums during certain sporting events. In considering the consequences if the legislation were ever repealed, the House Appropriations Committee's Subcommittee on Homeland Security requested that the General Accounting Office (GAO) investigate how the Federal Aviation Administration and the Transportation Security Administration could mitigate the threat of such aircraft.
The U.S. Department of Agriculture's (USDA's) computer networks have "pervasive information security control weaknesses" that put sensitive information--including "information relating to the privacy of U.S. citizens, payroll and financial transactions, proprietary information, agricultural production and marketing estimates, and mission critical data"--at risk of undetected disclosure, modification, or loss. That's according to a General Accounting Office review of the agency's cybersecurity program. The USDA regularly receives an "F" in the annual Federal Computer Security Report Card. @ Information Security: Further Efforts Needed to Address Serious Weaknesses at USDA is available through SM Online.
The GAO has testified to Congress regarding the airport screener program and the performance of public (federally employed) and private contract staff. The report notes, among other findings, that the Transportation Security Administration did not give private contractors much latitude to implement innovations.In addition, the Department of Homeland Security has released its report on how private airport screeners have performed, which was conducted by BearingPoint. Among the findings, the DHS says, is that "There is no evidence that any of the five privately screened airports performed below the average level of federalized airports. The report concludes there is credible data that in some areas, Kansas City private screeners performed above the average level of their federal counterparts." DHS's release further notes that "Costs for the five privately screened airports were not significantly different from the estimated cost of a federal screening operation at the same airport." With regard to performance, however, the agency says, "Performance was mixed in the larger airports and inconclusive at smaller ones. Generally, at the larger airports passengers had less confidence in the private security process, but their average wait time was slightly shorter. For the smaller airports, there was not enough data available to support any conclusion."
The GAO testified before a House subcommittee on maritime cargo inspection security challenges.
Randolph C. Hite, director, information technology architecture and systems issues, testified before the House Judiciary Committee's Subcommittee on Immigration, Border Security, and Claims, regarding Homeland Security: Risks Facing Key Border and Transportation Security Program Need to Be Addressed.
One of the figures most frequently cited to demonstrate the uphill battle that the United States faces against terrrorists is that only 1 or 2 percent of all imported cargo is inspected by the Department of Homeland Security's U.S. Customs and Border Protection (CBP). In an effort to improve security, the agency has been using a method called automatic targeting, in which certain cargo is selected based on a perceived level of risk. While the targeting system is helping in the fight against terrorism, it lacks key elements of a risk-management framework and is inconsistent with certain risk-modeling practices, according to Richard M. Stana, director of homeland security and justice for the U.S. General Accounting Office (GAO), who testified before the House Energy and Commerce Committee's Subcommittee on Oversight and Investigations.
The GAO has issued a report in the form of a letter to the House Appropriations Committee (Feb 20) regarding how the FBI and DHS's U.S. Immigration and Customs Enforcement (ICE) division are coordinating investigations into money laundering and related financial crimes that might also have ties to terrorism financing. GAO generally concludes that progress is being made.
The GAO has written a report to Congress titled "Homeland Security Advisory System: Preliminary Observations Regarding Threat Level Increases from Yellow to Orange."
The U.S. Department of Agriculture (USDA) has "significant, pervasive information security control weaknesses" brought on by the lack of a fully implemented IT security management program, according to a report from the U.S. General Accounting Office.<
The GAO has issued a report looking at the potential security risks that might arise from aerial advertising, should the existing restrictions on its use be removed. brought under the leadership of TFI."
HHS Secretary Tommy G. Thompson announced (March 11) a major public awareness effort to combat human trafficking and help its victims, including a toll-free hotline
A GAO report on airport screeners finds continued "weaknesses and vulnerabilities in the screening system." Among the problems sited were staff shortages and a lack of high-speed connectivity at some airports, which made it difficult to carry out training programs. With regard to the screening of checked baggage, the GAO says that TSA continues to face "operational and funding challenges."
The Department of Homeland Security has issued a "Myth v. Fact" sheet to address concerns about the proposed CAPPS II (passenger screening system). For example it says: "Myth: Once I buy a plane ticket, CAPPS II will seek out information about my life (travel patterns, purchases, living habits). FACT: CAPPS II will not use data mining techniques to profile and track citizens." And Senator Patrick Leahy (D-VT) issues a statement about a recent GAO report on CAPPS II.
GAO says states report progress in bioterrorism readiness but also site roadblocks. Few states have developed statewide or regional response plans.
A congressional report on CAPPS II, a controversial new computer screening system designed to identify potential terrorists among airline passengers, ""slams the planning," and says "it has failed a series of tests set by lawmakers," reports UPI. See the news coverage and the full GAO report.
The General Accounting Office has issued a report on the federal government's national strategies to fight terrorism since 9-11.
Biometric technologies can play an important role in helping government and private industry secure critical systems, but implementation of the technology is not without challenges, from government concerns such as border security to commercial uses including access control, according to congressional testimony from the General Accounting Office. The testimony also addresses how to weigh the costs and benefits of using biometrics and the effects of the technology on privacy and convenience. The testimony of Keith A. Rhodes, Information Security: Challenges in Using Biometrics
The Nuclear Regulatory Commission (NRC) is addressing the risk of terrorists striking nuclear power plants. Even so, the U.S. General Accounting Office recently identified three holes in its security posture.
In a recent study, the General Accounting Office (GAO) found that the amount of radioactive material stored in stainless steel or other metal and used for medical, industrial, or research purposes in the United States cannot be determined because the licenses issued for the storage devices are not tracked.
A report from the GAO looks at how the Air Marshal program is working. The report notes that the Federal Air Marshal Service has gone from a single office with a budget of about $4.4 million in fiscal year 2001 to 21 offices and a budget of $545 million in fiscal year 2003. It has been criticized in the media for problems with training and retention. The GAO notes that the agency has lost about 10 percent of its work force, and the GAO suggests that data be collected in future to determine why air marshals quit. It also suggests that the service collect information on actual hours worked versus hours scheduled to see whether marshals are being overworked. GAO further notes that "changes will be needed to resolve differences in the pay systems and compensation of air marshals, immigration agents, and customs agents."
The government's scrutiny of transportation security has the U.S. General Accounting Office (GAO) pumping out documents on maritime security, aviation security,airport passenger screening, and US-VISIT (United States Visitor and Immigrant Status Indicator Technology), a border and transportation security program.
In most quarters, "A penny saved is a penny earned" is just another bromide. But it's taken in its literal sense by security forces at the U.S. Mint, where nickel and dime theft grows into big losses: tens of thousands of dollars in coins have been stolen by employees in the last several years.Read the report.
The GAO has issued two new reports, one on improvements needed in money laundering prevention efforts and another on "Combating Terrorism: Improvements Needed in European Command's Antiterrorism Approach for In-Transit Forces at Seaports." (the terrorism report is not online.)
The Coast Guard has issued six final rules today on maritime security. The rules cover issues such as facility security, vessel security plans, and automatic identification systems, area rules, general provisions, outer continental shelf facility security.
Even two years after 9-11, the U.S. nuclear security and safeguards program still needs help, according to the General Accounting Office (GAO). Reviewing the security posture of four nuclear weapons production sites and three national laboratories that design nuclear weapons, the GAO found weaknesses in four areas.
Bad news continues to flow out of government and industry groups assessing the U.S. public health system's readiness for a terrorist attack. Both reports (Ready or Not:(1) Findings and Recommendations of the APHL Chemical Terrorism Project, and Hospital Preparedness: (2) Most Urban Hospitals Have Emergency Plans but Lack Certain Capacities for Bioterrorism Response)
Another GAO report examines the use of CCTV in Washington, D.C., to fight terrorism and considers the attendant privacy concerns of civil liberties advocates.
A report recently issued by the General Accounting Office (GAO) explores the roles of the Department of Transportation (DOT) and the Transportation Security Administration (TSA) in protecting the nation's transportation system.
The GAO has issued a report examining the problems with programs proposed by the Department of Homeland Security to increase border and transportation security, such as the US-VISIT program. The report also suggests how the program's can be improved.
Even two years after 9-11, the U.S. nuclear security and safeguards program still needs help, according to the General Accounting Office (GAO). Reviewing the security posture of four nuclear weapons production sites and three national laboratories that design nuclear weapons, the GAO found weaknesses in four areas.
Another GAO report examines the use of CCTV in Washington, D.C., to fight terrorism and considers the attendant privacy concerns of civil liberties advocates.
A report recently issued by the General Accounting Office (GAO) explores the roles of the Department of Transportation (DOT) and the Transportation Security Administration (TSA) in protecting the nation's transportation system.
The GAO told a congressional committee that progress in airport security has been made but that remaining challenges include such issues as the need to develop a comprehensive risk management approach. Other challenges concern how to obtain funds and control costs and the need to develop a results-oriented culture.
Agencies have made progress in implementing provisions of the Maritime Transportation Security Act, but problems remain, says a new GAO report. For example, it says, only a limited number of ports have vessel identification technology in place and concerns remain about approval of security plans for foreign vessels.
The GAO has recently testified before Congress on the challenges of implementing smart card technology and on the challenges of using biometrics for information ecurity. Both reports are online.
The GAO has recently testified before Congress on the challenges of implementing smart card technology and on the challenges of using biometrics for information security. Both reports are online.
In a review of 240 visa revocations by the General Accounting Office (GAO), auditors found that the Immigration and Naturalization Service and the FBI were still not always receiving notice of State Department revocations, and names were not consistently posted to the agencies' watch list of suspected terrorists. Worse yet, 30 people whose visas were revoked on terrorism grounds may still be in the United States.
Despite some progress in improving information security controls in the past several years, ongoing computer control weaknesses at the Internal Revenue Service (IRS) "threaten the confidentiality, integrity, and availability of sensitive systems and taxpayer data," according to a recent report by the General Accounting Office (GAO) prepared for a House subcommittee.
In the past two years, the FBI has had to reallocate its resources to better address terrorist threats. Word from the General Accounting Office (GAO) is that the FBI is making "good progress" but lacks adequate staff for analytical and technical assistance.
A recent reportby the General Accounting Office (GAO) discusses the state of rail security and notes that while private rail companies have been working to implement safety measures since 9-11, the Department of Homeland security has yet to develop a rail security plan for the country.
The House Select Committee on Homeland Security Subcommittee on Border and Infrastructure heard from Robert C. Bonner, commissioner of the Bureau of Customs and Border Protection (BCBP) and Richard M. Stanna, GAO director of homeland security and justice issues. Stanna noted that in FY2002, inspectors at over 300 ports of entry inspected nearly 450 million travelers, while the Border Patrol agents apprehended nearly 960,000 persons attempting to enter the United States illegally. He then discussed challenges faced by BCBP both with respect to cargo inspection and illegal entry of persons at borders. Bonner discussed smart border initiatives using technology and other issues.
U.S. General Accounting Office is recommending that the Department of Health and Human Services develop "specific benchmarks that define adequate preparedness for a bioterrorist attack."
Inspectors from the U.S. General Accounting Office (GAO) recently set out to determine the extent to which federal statutes regulate the security that food processors must have in place at their facilities.
About 700 U.S. chemical facilities could each potentially threaten at least 100,000 people in its surrounding area, and 3,000 facilities could each potentially threaten 10,000 people, according to the General Accounting Office (GAO).
Turns out that even as the United States clamps down on its borders, it's still pretty easy to get into the country with a little confidence and bogus paperwork, according to Robert J. Cramer, managing director of the Office of Special Investigations (OSI), General Accounting Office.
For months, experts have been warning about the difficulty of merging 22 agencies with vastly different missions, bureaucracies, and cultures into a cohesive Department of Homeland Security (DHS). Now as the various mergers begin to occur, Congress is holding hearings on some of the specific concerns that will have to be addressed. Recent testimony by the GAO's JayEtta Z. Hecker, director of physical infrastructure, details six of the challenges faced by the Coast Guard as it merges into the DHS: strategic planning, communication and partnership building, performance management, human capital strategy, information management and technology, and acquisition management.
The National Institute of Justice has released a two-CD-ROM set called Conflict Resolution for School Personnel: An Interactive School Safety Training Tool. The CDs contain tutorials and interactive scenarios on anger, threats, weapons attacks, suicide, and weapons on campus.
Did 9-11 prompt companies to alter their employee computer-use policies? From the small sample of firms studied by the U.S. General Accounting Office (GAO), the answer is most probably no. Examining the practices of 14 Fortune 1000 companies, researchers found that none had changed their computer-use policies due to September 11 and its aftermath. But awareness was heightened. The report found "a growing concern about electronic intrusion into their computer systems from outside trespassers or viruses." And companies "increased their vigilance by strengthening their surveillance of incoming electronic transmissions."
The Washington Post reports that "In a report to the House Judiciary Committee, the General Accounting Office said the Justice Department failed to monitor important IT projects at the Immigration and Naturalization Service (INS)," which has implications for tracking of suspected terrorists.
"In a report to the House Judiciary Committee, the General Accounting Office said the Justice Department failed to monitor important IT projects at the Immigration and Naturalization Service (INS)," which has implications for tracking of suspected terrorists.
The General Accounting Office (GAO) has sent a letter to Congress detailing challenges that face the nation in its drive toward greater homeland security. Among the issues: How to overcome "turf" issues that arise when information needs to be shared, legal and regulatory barriers to information sharing, and technological measures that can be used to protect shared databases.
Due to their often-multijurisdictional nature, intentional openness, and tight budgets, mass transit agencies pose a particularly difficult security challenge. Nevertheless, many transit agencies increased security significantly after 9-11. In testimony before Congress, Peter Guerrero, director of physical infrastructure issues for the U.S. General Accounting Office (GAO), recently described some of these enhancements. For example, Guerrero told a Senate subcommittee that deals with transportation issues that many transit agencies have looked anew at their vulnerabilities, boosted training on emergency preparedness, conducted multiple emergency drills, and fast-tracked projects initiated before September 11.
The U.S. General Accounting Office (GAO) recently explored whether money launderers were using illicit funds already placed in bank accounts to pay off credit card bills.
The fraudulent document of choice for aliens trying to enter the United States is the border crossing card; more than 30,000 of these cards were confiscated at U.S. borders in 2001. The next most common documents were alien registration cards (26,259), nonimmigrant visas (21,127), and U.S. passports and citizenship documents (18,925).Read the GAO report on this data and other report.
Homeland security concerns have the U.S. government furiously looking for new security technologies. Yet there is concern that, because of intellectual property issues, the U.S. government may be having trouble getting commercial vendors to enter into contracts.Read the GAO report. >
Estimated costs for irradiating mail throughout the United States range from about $880 million to $4.2 billion over a ten-year period, according to areport prepared by the U.S. General Accounting Office.
Estimated costs for irradiating mail throughout the United States range from about $880 million to $4.2 billion over a ten-year period, according to areport prepared by the U.S. General Accounting Office.
The Department of Agriculture, the Food and Drug Administration, and the Department of Transportation are among those federal agencies that have been singled out by the media and Congress as having important roles to play in helping the nation defend against bioterrorism. So why have those agencies been excluded in policy development and planning? That's just another example of the federal government's fragmented approach to countering terrorism, testified Paul L. Posner, managing director of federal budget and strategic issues for the U.S. General Accounting Office (GAO). Other GAO officials concurred.
Despite the frenzied effort to shore up federal facility security after the September 11 attacks and the anthrax scare, serious problems remain, as evidenced by the ability of government investigators to enter four federal buildings in Atlanta recently using bogus law enforcement IDs. Keith A. Rhodes, chief technologist for the General Accounting Office (GAO), told the panel that iris scanning fits the bill, noting that "it's the least invasive to the individual." He pointed out that scanners could capture the iris without requiring users to wait long or stand too close to the camera. And the time and distance requirements are being improved as camera technology evolves.Despite these advances, other witnesses noted that, just as in the private sector, biometrics has only carved out a small niche in federal building security. John N. Jester, chief of the Defense Protective Service, says that iris scanning and hand geometry are used only at specific sensitive offices. Nor are biometric systems being requested at government sites more often, Moravec told the subcommittee. Instead, countermeasures have included explosive detection systems, under-vehicle inspections, air-intake sensors, bomb dogs, and biological/chemical detection equipment. Moravec also told SM that current government building assessments are looking closely at preventing toxins in the air supply.
Federal law enforcement agencies generally don't specifically track identity theft cases, and identity theft is often wrapped in crimes such as credit card fraud. Pulling together the data that does exist, Richard M. Stana, director of Justice Issues for the U.S. General Accounting Office (GAO), recently testified before Congress that various measures support the perception that identity theft is becoming more common.A related issue, identity fraud, is the focus of a new paper by LexisNexis. (The difference between identity fraud and identity theft, the paper says, is that identity theft involves assuming an existing person's identity, usually to commit financial crimes. Identity fraud covers any criminal use of false identifiers.) >
Recent testimony by Richard J. Hillman, a GAO official, before the House Committee on Financial Services, Subcommittee on Oversight and Investigations warned that insurance companies can't eliminate terrorism insurance fast enough.
The Department of Agriculture, the Food and Drug Administration, and the Department of Transportation are among those federal agencies that have been singled out by the media and Congress as having important roles to play in helping the nation defend against bioterrorism. So why have those agencies been excluded in policy development and planning? That's just another example of the federal government's fragmented approach to countering terrorism, testified Paul L. Posner, managing director of federal budget and strategic issues for the U.S. General Accounting Office (GAO). Other GAO officials concurred.
Recent testimony by Richard J. Hillman, a GAO official, before the House Committee on Financial Services, Subcommittee on Oversight and Investigations warned that insurance companies can't eliminate terrorism insurance fast enough.
Nancy Kingsbury, managing director of GAO's Applied Research and Methods,testified before the Subcommittee on National Security, Veterans' Affairs, and International Relations, House Committee on Government Reform that the Department of Defense had not "systematicallyxamined the current distribution of medical personnel across specialties with respect to adequacy for chemical and biological defense."
Richard M. Stana, director of Justice Issues for the U.S. General Accounting Office (GAO), recently testified before Congress that various measures support the perception that identity theft is becoming more common.A related issue, identity fraud, is the focus of a new paper by LexisNexis. (The difference between identity fraud and identity theft, the paper says, is that identity theft involves assuming an existing person's identity, usually to commit financial crimes. Identity fraud covers any criminal use of false identifiers.)
Thomas J. McCool, managing director, financial markets and community investment, described for the Senate Committee on Banking, Housing, and Urban Affairs some features of insurance programs that cover catastrophic or terrorist events.
For security experts, risk management is a well-known term comprising threat assessment, vulnerability analysis, and a criticality review. But a surprisingly large number of private and public organizations in the United States fail to assess risk and take appropriate measures using this method. In recent testimony before the Subcommittee on National Security, Veterans Affairs, and International Relations, House Committee on Government Reform, an official with the General Accounting Office (GAO) detailed this approach and urged the nation to adopt it. >
Although fires in federal office buildings result in about 90 injuries and $130 million in property damage per year, the U.S. Fire Administration does not collect data on the number or causes of these incidents.
At least 34 federal agencies have significant roles in fighting international crime, from obvious players such as the Secret Service and the FBI to lesser known entities such as the Office of Foreign Assets Control and the Bureau for International Narcotics and Law Enforcement Affairs. Inevitable jurisdictional overlaps mean that these agencies must closely coordinate with one another.(pdf)
Janet Heinrich,director, health care--public health issues for GAO, recently testified before the Subcommittee on Government Efficiency, Financial Management, and Intergovernmental Relations, House Committee on Government Reform that many federal agencies have beenengaged in research and preparedness activities. Striking the same chord recently intestimony before the Senate Committee on Health, Education, Labor, and Pensions were several public health and bioterrorism experts. Mohammad N.Akhter, executive director of the American Public Health Association, noted that only 25 states have Epidemic Intelligence Service Officers, known as "disease detectives," supplied by the Centers for Disease Control and Prevention. Michael T.Osterholm, the director of the Center for Infectious Disease Research and Policy atthe University of Minnesota, presented the results of a workgroup that proposed funding amounts for specific initiatives. Donald Henderson, director of the Johns Hopkins Center for Civilian Biodefense Studies,targeted areas for immediate improvement, such as communications between public health agencies and the availability of a national pharmaceutical stockpile. Finally, at another hearing, a GAO expert warned that the food safety system is unlikely to detect and quickly respond to the contamination of food with biological agents.(pdf)
In the grim aftermath of the September 11 attacks, the U.S.General Accounting Office (GAO) has reiterated its longtime suggestion that the United States boost its defense of terrorist attacks. Read the testimony and the GAO report.(pdf).
GAO report by Homeland Security on "Challenges and Strategies in Addressing Short- and Long-Term National Needs." (pdf).
General Accounting Office (GAO) (pdf) has discovered that cardholders have been using Pentagon money to buy personal items. This fraud, waste, and abuse resulted from weak internal controls, flawed or nonexistent policies and procedures, and disregard of actual policies and procedures. For example, no policy effectively limited the issuance of cards, so more than one-third of employees at one Navy facility had de facto procurement power, the GAO found. In another audit, the GAO cited internal control weaknesses at the U.S. Department of Education that have led to improper payments,including those resulting from fraud and abuse.
Using fake driver's licenses, undercover auditors from the General Accounting Office were recently able to buy various guns and ammunition from dealers in five states--Arizona, Montana, New Mexico, Virginia, and West Virginia.Read the report.
Vulnerabilities in, and Alternatives For, Preboard Screening Security Operations, by Gerald L. Dillingham, director, physical infrastructure issues, before the Senate Committee on Government Affairs and the Subcommittee on Oversight of Government Management, Restructuring, and the District of Columbia.Read the GAO report.
In one report, the GAO told the House Subcommittee on National Security, that while progress has been made since the last audit in 1999, agencies can do more to ensure the availability of pharmaceutical and medical supplies used to treat victims in the event of biological and chemical attacks. In a second report, the GAO told congressional requesters that the Federal Emergency Management Agency has put to use the lessons learned from the Oklahoma City bombing, such as establishing enough emergency response teams to treat mass casualties. A third report
Three years after the National Infrastructure Protection Center (NIPC) was created, it is "often not able to provide timely information on changes in threat conditions or warnings of imminent attacks," according to a report that the GeneralAccounting Office (GAO) presented to Congress recently.
A recent General Accounting Office (GAO) report notes that during the 2000 tax filing season, the IRS "did not adequately secure access to its electronic filing systems or to the electronically transmitted tax return data those systems contained," exposing this information to compromise by both insiders and outsiders.
A recent report by the General Accounting Office (GAO), "Information Security: Challenges to Improving DoD'sIncident Response Capabilities," indicates that the Department of Defense has a long way to go in addressing the information security challenges it faces.
he U.S. government is making strides toward establishing a public-key infrastructure (PKI) by promoting its use in individual departments and "laying the groundwork for the future development of a broader governmentwide PKI," according toa recent report from the General Accounting Office (GAO).
Department of Health and Human Services issued a long-awaited regulation addressing privacy of medical data. Examining this regulation, the GAO has concluded that while it gives patients some control of how physicians, health plans, and hospitals use their private data, these same entities "will face a complex set of privacyrequirements that are not well understood at this time."
To shore up operational systems security, the GAO recommends, in part,assessing all operational air traffic control systems and addressing any weaknesses, and completing overall security guidance documents.
GAO testimony,lawmakers accused FAA officials at the hearing of not taking the agency's security vulnerabilities seriously. Willemssen criticized the FAA for such errors as not implementing its security awareness policy, failing to report lapses in physical security, and having poor intrusion detection systems.
GAO issues report on airport screener personnel performance problem.
GAO report recommendedthat researchers traveling on behalf of the Department of Energy (DOE) receive morecomprehensive security training and that trip requests be more carefully reviewed bysenior officials.
U.S. General Accounting Office (GAO) has identified computer security weaknesses at many government agencies, including the Environmental Protection Agency, the Department of Defense, NASA, the Department of State, and the Department of Veterans Affairs.
GAO report on DOD information security.
GAO discuss various aspects of the United States' preparedness for terrorism. Testimony before the HouseSubcommittee on National Security, Veterans Affairs, and International Relations, Committee on Government Reform points to lack of internal controls to manage medicalstockpiles that would be used to treat civilians in a chemical or biological attack. More GAO testimony,before the House Subcommittee on Oversight, Inves tigations, and Emergency Management,Committee on Transportation and Infrastructure, delves into various issues in managing counterterrorist programs. The authors of a GAO report also question whether counterterrorism strategies are being properly coordinated.
GAO Testimony before the Senate environmental committee's nuclear safety subcommittee is based on May 1997 report about preventing problems at nuclear power plants.
GAO official Carol R. Schuster, who testified before the House Subcommittee on National Security, Veterans Affairs, and International Relations, a part of the Committee on Government Reform, all 530 of these people received top secret clearance even though "investigators had not always verified such basic information as residency, citizenship, or employment." Read the full report.
GAO report that EPA could do a better job on providing senstive business information.
GAO Testimony before the Senate environmental committee's nuclear safety subcommittee is based on May 1997 report about preventing problems at nuclear power plants.
In 1998, why were black women nine times more likely than white women who were U.S. citizens to be x-rayed after being frisked or patted down in U.S. airports by Customs agents? Read the GAO report.
U.S. General Accounting Office (GAO) has identified computer security weaknesses at many government agencies, including the Environmental Protection Agency, the Department of Defense, NASA, the Department of State, and the Department of Veterans Affairs.
The GAO(pdf version, text version) has also testified about security issues at the Department of Energy's recently formed National Nuclear Security Administration (NNSA), created on March 1, 2000,to remedy weak oversight of contractors and poor accountability for program management.Jones also testified(pdf version, text version) before the Subcommittee on Energy and Power and the Subcommittee on Oversight and Investigations, House Committee on Commerce, about the NNSA's security programs to protect against theft, sabotage, terrorism, and other risks to national security.
The threat of weapons of mass destruction is omnipresent throughout Russia and the other newly independent states, especially since Russia is apparently unable to fund its share of U.S. programs designed to reduce these threats.Readthe GAO report.
The GAO's assessment of State's overseas emergency security program.
The threat of weapons of mass destruction is omnipresent throughout Russia and the other newly independent states, especially since Russia is apparently unable to fund its share of U.S. programs designed to reduce these threats.Read the GAO report.
The GAO has shown that, through the Internet, hackers can feast on EPA data.
New GAO report looks at progress towards securing embassies.
The Drug Enforcement Administration (DEA) suffers similar problems, according to another GAO report.
GAO auditors found deficiencies in U.S. Department of Education's user identification and password management, physical security of computer facilities, access control for sensitive computer resources, documentation of its information technology architecture, and disaster recovery plans.
U.S. General Accounting Office (GAO) issued a report assailing the Department of Defense for its porous defense of information and computer systems.
Money laundering. GAO has the full report and related testimony.
Department of Veterans Affairs, which had taken several steps to improve systems security after a critical GAO report was published in September 1998. While also flawed, the computer systems of the Federal Reserve Banks at least did not have vulnerabilities that posed significant risks .
GAO report, "Information Security Risk Assessments: Practices of Leading Organizations."
GAO issued a report assailing the Department of Defense for its porous defense of information and computer systems.
Testimony by a GAO official before the House Committee on Banking and Financial Services' Subcommittee on Domestic and International Monetary Policy.
The ARC claims that the theft problem is minor and on the decline, amounting to a fraction of the airlines' gross revenues. Travel agency representatives contend that the problem is severe and has had a devastating economic effect. Turns out they both could be right, according to a recent report by the U.S. General Accounting Office (GAO).
GAO report calls ATOS promising, but asserts that the FAA is still hamstrung by a lack of clear guidance, staff turnover, inadequate technical training and experience among inspectors, and other problems.
GAO report discusses the growing narcotics threat from Colombia.
GAO report of information security at DOD
GAO report that Russia has failed to supply its share of the costs for the nuclear storage facility.
GAO report that veterans of the Gulf War have been complaining about unexplained illnesses, which some attribute to anthrax vaccines.
GAO report on whether HHS had done its homework on combatting terrorism.
GAO testimony before the subcommittee on Enhancing Federal Oversight of Electronic Banking.
More GAO reports and GAO publication on "Year 2000Computing Crisis" can be read online.
GAO report on Y2k and the electric industry.
GAO report on Y2k and the water industry.
GAO report on Y2k and vetarans' benefits and healthcare services.
GAO report on Y2k and biomedical equipment
GAO report on Y2k emergency funds
GAO report on Y2k and Global Positioning System
GAO report online on FAA and Y2k readiness
GAO Report on Internet fraud
GAO Report on the technology that detects and measures the presence of specific materials in explosives and drugs.
GAO Report on Medical records privacy .
GAO Report on testimony to the Senate Committee on Health, Education, Labor and Pensions.
GAO Report on Department of Energy's efforts to reduce nuclear risks.
GAO Report on the FBI resources devoted to fighting terrorism more than doubled, jumping from an estimated $256 million in 1995 to about $581 million in 1998.
GAO Report that the Information Security Oversight Office has not conducted security inspections of EOP activities.
GAO Report on Federal Reserve Banks: Areas for Improvement in Computer Controls.
GAO Report on Combating Terrorism.
GAO Report Terrorism.
GAO Report Economic Espionage
GAO Report Drug Trafficking: Responsibilities for Developing Narcotics Detection Technologies .
GAO Report Terrorism and Drug Trafficking: Responsibilities for Developing Explosives and Narcotics Detection Technologies .
GAO Report Fingerprint-Based Background Checks: Implementation of the National Child Protection Act of 1993 .
GAO Report Drug Control: Long-Standing Problems Hinder U.S. International Efforts
GAO Report Health Care Fraud .
GAO Report Aviation Security .
GAO Report Information Security: Computer Attacks at Department of Defense .
GAO Report Money Laundering .
GAO Report Private and Public Prisons:Studies Comparing Operational Costs and/or Quality of Service.
University of Florida Response to GAO Report on Private and Public Prisons
GAO Report Drug Control: Counternarcotics Efforts in Mexico .
GAO Report Counterfeit U.S. Currency Abroad:Observations on Counterfeiting and U.S. Deterrence Efforts
GAO Report U.S. Treasury: Observations on Plans to Study Genuine and Counterfeit U.S. Money Abroad.
GAO Report Aviation Safety: FAA Has Begun Efforts to Make Data More Publicly.
GAO Report Substance Abuse and Violence Prevention: Multiple Youth Programs Raise Questions of Efficiency and Effectiveness .
GAO Report Aviation Security (includes Exhibits).
GAO Report Information Management and Technology.
GAO Report Nuclear Nonproliferation and Safety: Uncertainties About the Implementation of U.S.-Russian Plutonium Disposition Efforts .
GAO Report Nuclear Power Safety:Industry Concerns With Federal Whistleblower Protection System.
GAO Report Violent Crime: Federal Law Enforcement Assistance in Fighting Los Angeles Gang Violence .
GAO Report DOE Security: Information onForeign Visitors to the Weapons Laboratories.

OSHA Reports

Don’t know what to do if pandemic influenza hits the U.S.? Then read the Occupational Safety and Health Administration’s pandemic influenza preparedness and response guidelines for the healthcare field.
The FDA’s Food Facilities Registration Database is intended to help the government share warnings of food-borne illnesses, but errors in the contact information were found in a recent test. See the study results online.
A bill (H.R. 3165) introduced by Rep. Al Green (D-TX) would hold companies criminally liable for the deaths of contract employees that result from willful violations of safety standards set out by the Occupational Safety and Health Administration. H.R. 3165 has 12 cosponsors and has been referred to the House Education and the Workforce Committee.
Several bills that would give employers more latitude in disputes with the Occupational Safety and Health Administration (OSHA) have been merged into one measure (H.R. 739). This bill has been passed by the House of Representatives and is currently pending in the Senate Health, Education, Labor, and Pensions Committee.The legislation would allow employees more time to contest safety violations. Currently, employers have 15 days to contest safety violations. The bill would allow employees to exceed that 15-day time limit if the failure to contest results is from “mistake, inadvertence, surprise, or excusable neglect.”H.R. 739 would also allow employers with 100 or fewer employees and a net worth of $7 million or less to collect attorney’s fees ifthey prevail in a dispute with OSHA.
The National Institute for Occupational Safety and Health has released a DVD on preventing work-related homicides. Among other material, it contains a training program and OSHA guidelines. @ To download it or request a free hard copy go to SM Online.
The Occupational Safety and Health Administration (OSHA) has issued two ergonomics guidelines, one for the retail grocery industry and the other for poultry processing plants.
One bill (H.R. 2728) introduced by Rep. Charlie Norwood (R-GA) would allow businesses extra time to reply to OSHA citations. Under current law, businesses have 15 days to respond. However, H.R. 2728 would allow OSHA to grant exceptions to this deadline in cases where the employer failed to comply due to "mistake, inadvertence, surprise, or excusable neglect." Another bill (H.R. 2731) also introduced by Norwood would allow small businesses--those with fewer than 100 employees and a net worth of less than $7 million--to seek reimbursement of attorney's fees if they successfully contest an OSHA citation. Such fees could be collected from the government even if the citation was "substantially justified."
Small businesses often struggle with understanding them. Now they can get free on-site health and safety consultations from state governments. Participant companies' names are kept anonymous. In addition, any unsafe conditions found during a consultation will not automatically be reported. The program may even exempt businesses from general scheduled OSHA inspections for one year. @ Go to SM Online to learn more about this free service.
Two bills (S. 1272 and H.R. 1583), introduced by Sen. Jon Corzine (D-NJ) and Rep. Charlie Norwood (R-GA) respectively, would affect company compliance with Occupational Safety and Health Administration (OSHA) rules.
The Occupational Safety and Health Administration will publish in the May 28, 2003 Federal Register an interim final rule establishing procedures for the handling of whistleblower complaints under the Corporate and Criminal Fraud Accountability Act of 2002, also known as the Sarbanes-Oxley Act. OSHA is seeking comments from interested members of the public. Persons wishing to comment on the interim final rule should submit written comments no later than July 28, 2003.
OSHA has issued its five-year plan for making the workplace safer, including reducing injuries and improving workplace emergency response capabilities.
OSHA has developed an Evacuation Planning Matrix to help employers develop their own plans for reacting to a potential chemical, radiological, nuclear, or biological terrorist attack. The agency notes that it is not a compliance tool. "Rather, this document covers the general aspects of emergency planning and includes broad questions to help employers review their existing plan in light of an indoor or outdoor terrorist release," explains the introduction.
The Occupational Safety and Health Administration (OSHA) has sent letters to 14,000 work sites with higher than average injury and illness rates.
The Occupational Safety and Health Administration (OSHA) has released guidelines for companies that must comply with the agency's new bloodborne pathogens rule, which took effect last month.
The Occupational Safety and Health Administration (OSHA) has issued a final rule on its ergonomics program.
A fact sheet from the Occupational Safety and Health Administration, lists ten
OSHA publishes proposed ergonomics standard.
The U.S. Occupational Safety and Health Administration (OSHA) recently stated that employers are not responsible for the work area and equipment of white collar employees who work at home.
Department of Justice's healthcare fraud report for FY 1998
The Occupational Safety and Health Administration (OSHA) has released a directive on how employers can minimize the health risks presented by bloodborne pathogens present on contaminated needles or other sharp objects.
OSHA revises bloodborne pathogens compliance directive.
OSHA Report Violence in the Workplace.
OSHA Report Workplace Violence Prevention Programs for Night Retail Establishments .
OSHA Report Preventing Workplace Violence for Health Care and Social Service Workers

Testimony Before Congress

The Senate Judiciary Committee recently held a hearing to examine the privacy and civil liberties concerns surrounding the driver’s license requirements mandated under the REAL ID Act. Witnesses also evaluated two new bills—S. 717 and H.R. 1117—that would repeal REAL ID and require a new set of standards for driver’s licenses. You can read the full testimony here.
The bill (S. 378) would increase courthouse security has been approved by the Senate. The House of Representatives has not announced whether it will take action on the bill, which would also require that the U.S. Marshals Service offer ongoing security advice to the judiciary.
The bill (H.R. 493) would prohibit discrimination based on genetic information has been approved by the House of Representatives. The Senate has agreed to consider the measure and has also released a report on the proposed legislation.
The bill (S. 236) introduced by Sen. Russ Feingold (D-WI) would monitor government use of data mining has been approved by the Senate Judiciary Committee.
The bill (H.R. 1413), introduced by Rep. Nita Lowey (D-NY), would establish an airport security pilot program has been approved by the House Homeland Security Committee’s Subcommittee on Transportation Security and Infrastructure Protection.
Two bills (S. 430 and H.R. 718) introduced by Sen. Christopher Bond (R-MO) and Rep. Tom Davis (R-VA) would require the military to identify gaps between federal and state capabilities to respond to emergencies that have been created by the deployment of National Guard troops to Iraq and Afghanistan. The bill would also make the Chief of the National Guard Bureau a member of the Joint Chiefs of Staff.
A bill (S. 4) designed to implement the final recommendations of the 9-11 Commission has been approved by the Senate and has been received by the House of Representatives. [A companion bill (H.R. 1) has been approved by the House and is now pending in the Senate Homeland Security and Governmental Affairs Committee.]
A bill (H.R. 1680) that would regulate the sale and purchase of ammonium nitrate has been approved by the House Homeland Security Committee’s Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology. Ammonium nitrate is a critical ingredient used in making explosives.
A bill (H.R. 1401) that would enhance security requirements for public transit systems has been approved by the House of Representatives and has been referred to the Senate Commerce, Science, and Transportation Committee.
A bill (S. 544) introduced by Sen. Pat Roberts (R-KS) would provide tax credits for retailers who sell agricultural products to implement security provisions.
Mayors, governors, and civil libertarians gave Congress an earful about the REAL ID Act, saying that it is costly, impractical, and will put private data at risk. They are pushing for a revised law.
A bill (S. 378) to increase courthouse security has been approved by the Senate Judiciary Committee. The bill would require that the U.S. Marshals Service offer ongoing security advice to the judiciary.
A bill (S. 509), introduced by Sen. Daniel K. Inouye (D-HI), that would require screening of cargo on passenger airplanes has been approved by the Committee on Commerce, Science, and Transportation. The Senate has agreed to consider the bill
A bill (S. 358) introduced by Sen. Olympia Snowe (R-WA) would prohibit discrimination based on genetic information has been approved by the Senate Health, Education, Labor, and Pensions Committee
Apparently,jihadists have a new slogan reminiscent of the age old cliche, "The pen is mightier than the sword." Theirs is a bit more tech savvy though: “Keyboard equals Kalashnikov.”

This tidbit came yesterday (May 3) at the Senate Committee on Homeland Security and Government Affairs hearing on Islamic extremist radicalization and recruiting via the Internet.

Another disturbing piece of information came from Lieutenant Colonel Joseph H. Felter, director of the Combating Terrorism Center at West Point. In what he labeled turning "consumers" of jihadist propaganda into "producers of terrorism," one jihadist Web site held a web design contest for their Web site. What did the winner get? To fire a rocket from the comfort of home with a mouse click.

Committee Chairman Sen. Joe Lieberman (I-CT) said it was ironic "that the internet – invented by the Department of Defense as a way to ensure undisrupted communications in the event of an enemy attack – is now being used to recruit and train the terrorists who plot such lethal attacks against American and other western targets."

The witnesses each elucidated strategies to counter jihadist radicalization and recruitment online. None more so than Frank J. Cilluffo, director of Homeland Security Policy Institute at George Washington University, who in partnership with The University of Virginia’s Critical Incident Analysis Group, released a report as part of the hearings: "NETworked Radicalization: A Counter-Strategy."
A bipartisan amendment to prevent domestic eavesdropping passed the House on Friday (May 11) as part of the Intelligence Reauthorization Bill.

The amendment, sponsored by Representatives Adam Schiff (D-CA) and Jeff Flake (R-AZ), reaffirmed that law enforcement must follow the Foreign Intelligence Surveillance Act (FISA) when electronically gathering information domestically to protect national security. FISA ensures there is judicial approval and oversight when conducting electronic surveillance such as wiretapping. Under FISA, law enforcement must seek a warrant before, or up to 72 hours after, the beginning of surveillance from the Foreign Intelligence Surveillance Court (FISC).

The passage of the amendment is a setback for the Bush Administration, which is seeking to expand its ability to set up warrantless surveillance on whomever it deems to be a threat to national security.
A bill (H.R. 592), introduced by Rep. Bill Pascrell (D-NJ), would require colleges and universities that receive federal funds to provide an annual fire-safety report to all current students and employees, and to any applicant upon request. The report would contain specific information about the fire-safety practices and standards of that institution.
Sen. Frank Lautenberg D-NJ) has introduced legislation aiming to bar terrorism suspects from acquiring firearms. The bill, (S. 1237), would empower the attorney general to restrict gun sales to people suspected of terrorism activities. Those denied firearms can appeal the decision to the attorney general. The Department of Justice has endorsed the bill but says under certain circumstances, terrorism suspects will be allowed to make the purchase if tipping them off could hamper intelligence gathering and drive suspects underground. Some critics fear the law is a fundamental violation of due process and a continued assault on 2nd Amendment rights.
A bill (H.R. 599) that would streamline the certification process under the SAFETY Act, which provides legal immunity for the use of certified products, has been approved by the House of Representatives and is currently under consideration in the Senate Homeland Security and Governmental Affairs Committee.
A bill (S. 276) introduced by Sen. Dianne Feinstein (D-CA) is designed to curb document fraud by making it illegal for anyone to produce, issue, or transfer more than ten legitimate passports without permission from the government. Forging, counterfeiting, or altering passports and making ten or more false applications for passports would be punishable by up to 20 years in prison.
Sen. Frank Lautenberg (D-NJ) has introduced legislation aiming to bar terrorism suspects from acquiring firearms. The bill, (S. 1237), would empower the attorney general to restrict gun sales to people suspected of terrorism activities. Those denied firearms can appeal the decision to the attorney general. The Department of Justice has endorsed the bill but says under certain circumstances, terrorism suspects will be allowed to make the purchase if tipping them off could hamper intelligence gathering and drive suspects underground. Some critics fear the law is a fundamental violation of due process and a continued assault on 2nd Amendment rights.
April 24 the Senate Committee on Homeland Security and Government Affairs had its first hearing on campus security since the Virginia Tech massacre last week. Appearing before the committee was Steven Healy, Princeton's director of security, president of the International Association of Campus Law Enforcement Administrators, and a member of ASIS's Educational Institutions Council. During his testimony, Healy remarked "We must balance the openness that is the hallmark of the American system of higher education with the need to protect students, faculty, staff, and visitors." He ensured the American people that "vigorous efforts are underway to develop and implement best practices in campus public safety."
You can find the rest of the statements and testimonies here.
The House Education and Labor Committee’s Subcommittee on Health, Employment, Labor, and Pensions held a hearing on H.R. 493, a bill that would outlaw genetic discrimination. The bill would prohibit health insurance providers from denying coverage or charging higher premiums based on a genetic predisposition to develop a disease.
A bill (S. 184) introduced by Sen. Daniel Inouye (D-HI) would increase security requirements for freight and passenger rail systems has been approved by the Senate Commerce, Science, and Transportation Committee. The measure is now pending in the Senate.
A bill (H.R. 143) introduced by Rep. Gene Green (D-TX) would allow the government to provide direct assistance to the private sector in an emergency. The measure would allow disaster aid to private companies that operate critical energy infrastructure, including refineries. Federal assistance could include recovery of equipment, access to water, power, or other raw materials, and transportation and housing for critical employees.
A bill (H.R. 257) introduced by Rep. Sheila Jackson-Lee (D-TX) would require that all hospitals that receive reimbursements under Medicare implement security procedures to reduce infant abduction. These security measures would include procedures for identifying all infants that would help hospitals know when an infant was missing.
A bill (S. 201) introduced by Sen. Hillary Rodham Clinton (D-NY) would establish grants of $1.9 million to provide medical and mental health monitoring, tracking, and treatment to individuals whose health has been directly impacted as a result of the 9-11 attacks. The grants would cover firefighters, police officers, paramedics, volunteers, residents, students, and any other individual whose health deteriorated as a result of the attacks.
A panel has issued to the Senate Armed Services Committee the second of three reports on the state of the national guard. It finds the guard stretched thin given the multiple missions it is being asked to fill and ill-equipped to respond to the next disaster.
The House Energy and Commerce Committee’s Subcommittee on Oversight and Investigations held a hearing on the safety of the U.S. drug supply.
The Bureau of Alcohol, Tobacco, Firearms, and Explosives (ATF) is expanding its involvement in helping the military in Iraq in dealing with Improvised Explosive Devices (IEDs)
Thirty-six U.S. Senators have now signed a letter to President Bush objecting to a provision in S. 4, the 9/11 Commission Recommendations bill, which would call for mandatory collective bargaining for airport security workers.
The Federal Trade Commission has issued its report to Congress on the first five years of theChildren’s Online Privacy Protection Act (COPPA). If says that it has been effective but cites concerns about the lack of age-verification technology and the fact that children are migrating to general sites (not specifically for children), such as social-networking sites.
The House Appropriations Committee’s Subcommitee on Homeland Security held a hearing on the status of the U.S. VISIT program, a system that recording information on the movements of all noncitizens into and out of the United States.
Hawaii’s high court has ruled that a company wrongfully fired an employee based solely on his prior criminal record. The court said that the conviction must have a relationship to the job.
Maine’s high court has ruled that a company did not discriminate against a security guard when it refused to allow him to carry a firearm. The company decided not to arm the guard after several psychological evaluations. Reports on the evaluations noted that the guard was aggressive and short-tempered.
An Illinois appeals court has ruled that a patient whose private information was revealed at a tavern by a hospital employee can sue that hospital for invasion of privacy. The privacy obligation applied at all times and in all places.
The Department of the Treasury, along with several other agencies, has issued a proposed rule that will require financial institutions and creditors to establish a program to reduce identity theft. Under the proposed rule, financial institutions and creditors must develop policies and procedures to prevent identity theft from occurring. The program, according to the proposed rule, must be appropriate to the size and complexity of the company and must take into account the nature and scope of its activities. Those companies falling under the regulation would have to identify red flags that are relevant to detecting possible identity theft; verify the identity of people opening accounts; mitigate the risk of identity theft commensurate with the degree of risk posed; and devise training programs for employees. @ To read the entire proposed rule, visit SM Online.
The Nuclear Regulatory Commission (NRC) has issued a proposed rule requiring that nuclear facilities conduct risk assessments, implement training exercises, and enhance security programs. Under the proposed rule, nuclear facilities would be required to conduct risk assessments to ensure that plant activities are consistent with safety and security. Nuclear facilities would also be required to conduct scenario training exercises with security personnel. @ The full text of the rule is available at SM Online.
Airport security. The Transportation Security Administration (TSA) has pushed back two deadlines for conducting background checks on workers who handle air cargo. The original deadline to screen all such workers was December 1, 2006. However, the deadline has now been extended to March 15, 2007 for the staff of U.S. aircraft operators and foreign air carriers. An even later deadline—June 15, 2007—has been set for employees of indirect air carriers. These are companies that contract with air carriers to perform a security-related service such as storing cargo or moving it from a warehouse to the airport. @ To read the regulation establishing these new deadlines, visit SM Online.
The Nuclear Regulatory Commission (NRC) has issued a final rule requiring that those who have access to nuclear safeguards information—defined as sensitive, unclassified, security-related data—be fingerprinted and undergo an FBI criminal records check. Under the rule, those who have completed a background check within the past five years or who have an active security clearance need not be rescreened at this time. The fingerprinting requirement is required under the Energy Policy Act of 2005, and is effective immediately. The NRC is currently working on a more comprehensive rule addressing the other issues set out in the act. The upcoming rule will address issues such as security precautions to preserve the integrity of safeguard information and how often employees must be rescreened. @ Full text of the rule is at SM Onilne.
Soon after convening in January, the House of Representatives approved H.R. 1, a bill that would implement the recommendations of the 9/11 Commission that were not enacted in the prior Congress. While the 9/11 Commission had much support, concerns about the costs and practical challenges of implementing all of its recommendations remain. For that reason, this bill is not expected to sail as expeditiously to passage in the Senate.
The House Energy & Commerce Committee's Subcommittee on Oversight and Investigations held a hearing yesterday on information security practices at Los Alamos National Laboratory.
The House Education and Labor Committee's Subcommittee on Health, Employment, Labor, and Pensions held a hearing yesterday to discuss protecting workers from genetic discrimination.
Transportation Security Issues. Two Senate hearings being held today will focus on transportation security issues. The first, held by the Senate Banking, Housing, and Urban Affairs Committee will deal with transit security issues. The second, which will address federal efforts to enhance rail and surface transportation security, will be held by the Senate Commerce, Science, and Transportation Committee.
The Department of Homeland Security (DHS) has announced that it will require those municipalities that have grants from the department to have interoperable communications systems implemented by the end of 2007