Dysfunctional management at Energy undermines missions, says report
Chronic "management dysfunction" within the Energy Department is hindering its science and technology programs and security missions, according to a report released last week by the Center for Strategic and International Studies (CSIS).
"Even the best security policies and sound processes for their development will not be effective if strong leadership and effective management are lacking," a CSIS panel on science and security said in its report, which was based on an 18-month study commissioned by Energy.
The panel found that the relationships among the department's headquarters, field offices, national laboratories and contractors have created a "complicated, layered structure" that lacks accountability, fuels internal battles and makes it difficult to develop a clear, consistent security policy.
The department's scientific community also tends to disagree with security and counter-intelligence officials on what constitutes a national security risk, according to the report. "There are deeply held differences dividing the communities over what requires protection, how much protection is needed and by what means that protection should be provided," the panel said.
The commission recommended a series of management reforms and said Energy should integrate its science and security operations. The panel also called for a "significant investment" in new security tools, including cutting-edge authentication technologies, better access control to computer systems and better data fusion and analysis.
"By employing new technologies, [the department] could strengthen positive identification of employees and visitors, and significantly reduce cumbersome physical- and cyber-access requirements," the panel said, adding that the department "must also invest in databases, information systems and analytical tools to perform data cross-correlation, data mining and other analysis for security and counter-intelligence purposes."
The panel called for stronger information-assurance practices, recommending that the department establish a cybersecurity advisory panel with experts from the private and academic sectors. Energy also should implement existing cybersecurity technologies more quickly and do more to evaluate emerging technologies, according to the panel.
Over the course of the 18-month study, the commission kept the department apprised of its findings, and Energy Secretary Spencer Abraham said last week that the department already has begun to implement most of the commission's recommendations.
In a list of "accomplishments" released Thursday, Energy noted that a terrorism-intelligence working group established last fall is developing ways to improve real-time information sharing among various offices. The department also launched a biometrics pilot program last October to improve security in classified areas, and it has invested more of its counter-intelligence budget toward upgrading its information architecture.
"For the last 18 months, we have worked to improve and strengthen security throughout our laboratory system," Abraham said. "I am pleased that the CSIS report validates the approach we were taking in many areas."