In 2015, TSA established the Security Vulnerability Management Process to leverage agency-wide resources to address systemic vulnerabilities; however, this process has not yet resolved any identified security vulnerabilities. Since 2015, Inspection officials submitted nine security vulnerabilities identified through covert tests for mitigation, and as of September 2018, none had been formally resolved through this process. GAO found that in some cases, it took TSA officials overseeing the process up to 7 months to assign an office responsible to begin mitigation efforts. In part, this is because TSA has not established time frames and milestones for this process or established procedures to ensure milestones are met, in accordance with best practices for program management. Without doing so, TSA cannot ensure efficient and effective progress in addressing security vulnerabilities.
This is a public version of a classified report that GAO issued in January 2019. Information that TSA deemed classified or sensitive security information, such as the results of TSA's covert testing and details about TSA's screening procedures, have been omitted.
Why GAO Did This Study
TSA uses covert testing to identify potential vulnerabilities in checkpoint and checked baggage screening systems at US airports. In 2015, TSA identified deficiencies in its covert testing process, and in 2017, the Department of Homeland Security Office of Inspector General's covert testing identified deficiencies in screener performance. Since these findings, TSA has taken steps intended to improve its covert test processes and to use test results to better address vulnerabilities.
GAO was asked to review TSA's covert test programs, including how the results are used to address vulnerabilities. This report analyzes the extent to which (1) TSA covert tests are risk-informed, (2) TSA covert tests for fiscal years 2016 through March 2018 produced quality information, and (3) TSA uses covert test results to address any identified security vulnerabilities.
GAO observed 26 TSA covert tests, reviewed TSA guidance, analyzed test data for fiscal years 2016, 2017, and through March 2018, and interviewed TSA officials.
What GAO Recommends
GAO is making nine recommendations, including that TSA use a risk-informed approach for selecting covert test scenarios, take steps to improve the quality of airport covert test results, and establish time frames and milestones for the key steps in its vulnerability management process. TSA concurred with all nine GAO recommendations.
*GAO
The US Government Accountability Office (GAO) is an independent, nonpartisan agency that works for Congress. Often called the "congressional watchdog," GAO examines how taxpayer dollars are spent and provides Congress and federal agencies with objective, reliable information to help the government save money and work more efficiently.
For example, we identified $73.9 billion in financial benefits in fiscal year 2017—a return of about $128 for every $1 invested in us. We also identified 1,280 other benefits that led to program and operational improvements across the government.
Pages: 1 · 2
More Articles
- The Beige Book Summary of Commentary on Current Economic Conditions By Federal Reserve District Wednesday November 30, 2022
- A la Frank Sinatra: "Come Fly With Me", U.S. Department of Transportation Airline Customer Service Dashboard
- US Department of Justice: "From Nuremberg to Ukraine: Accountability for War Crimes and Crimes Against Humanity”
- Adrienne G. Cannon Writes: Those Lonely Days
- From the CDC: When You've Been Fully Vaccinated You Can ........For the 30,000,000 Who Have Been Vaccinated
- Update: Examining the January 6 Attack on the U.S. Capitol, Part II Joint Full Committee Hearing, Part II, March 3rd
- Jill Norgren Reviews a New Inspector Gamache Mystery: All the Devils Are Here
- FactCheck Post: The Facts on Trump’s Travel Restrictions: "We Don't Have a Travel Ban; We Have a Travel Band-Aid Right Now"
- Heard of the Novel Corona Virus Before? The New England Journal of Medicine's Free Reading Lists and the W.H.O.'s Statement
- Horse, Horse, Tiger, Tiger; It's the Tone of the Character That Makes the Word