NUCLEAR SECURITY: DOE Should Take Actions to Fully Implement Insider Threat Program
Abstract
The theft of nuclear material and the compromise of information could have devastating consequences. Threats can come from external adversaries or from "insiders," including employees or visitors with trusted access. In 2014, DOE established its Insider Threat Program to integrate its policies, procedures, and resources. The program also coordinates analysis, response, and mitigation actions among DOE organizations. The House report accompanying a bill for the National Defense Authorization Act for fiscal year 2022 includes a provision for GAO to review DOEs efforts to address insider threats with respect to the nuclear security enterprise. This report examines (1) the extent to which DOE has implemented required standards to protect the nuclear security enterprise from insider threats and (2) the factors that have affected DOEs ability to fully implement its Insider Threat Program. GAO reviewed the minimum standards and best practices for federal insider threat programs, DOE documentation, and four assessments by independent reviewers. GAO also interviewed DOE and National Nuclear Security Administration officials and contractors.
Document Details
- Document Type
- Technical Report
- Publication Date
- May 24, 2023
- Accession Number
- AD1202745
Entities
People
- Allison Bawden
- Antoinette Capaccio
- Cindy Gilbert
- Daniel Will
- Danny Royer
- Gwen Kirby
- Hilary Benedict
- Keya Cain
Organizations
- United States Government Accountability Office