Audit of the DoD Component Insider Threat Reporting to the DoD Insider Threat Management and Analysis Center (Full Report is CUI)

Date Issued

Wednesday, September 28, 2022

Submitting OIG

Department of Defense OIG

Agencies Reviewed/Investigated

Department of Defense

Report Number

DODIG-2022-141

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Hide this report from display

Yes

Open Recommendations

This report has 5 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
D-2022-0141-D000CP-0001-0003.b	No	$0	$0
(U) Rec. 3.b: The DoD OIG recommended that the Under Secretary of Defense for Intelligence and Security, in coordination with the Defense Counterintelligence and Security Agency Director and the DoD Insider Threat Management and Analysis Center Director establish a policy with timelines for DoD Components to report insider threats to the DoD Insider Threat Management and Analysis Center.
D-2022-0141-D000CP-0001-0003.c	No	$0	$0
(U) Rec. 3.c: The DoD OIG recommended that the Under Secretary of Defense for Intelligence and Security, in coordination with the Defense Counterintelligence and Security Agency Director and the DoD Insider Threat Management and Analysis Center Director, submit the FY 2022 annual report on the DoD Insider Threat Program to the Secretary of Defense and establish a process for ensuring that subsequent reports are submitted in accordance with the National Insider Threat Task Force Minimum Standards for Insider Threat Programs and DoD Directive 5205.16, "The DoD Insider Threat Program," September 30, 2014, (Incorporating Change 2, August 28, 2017).
D-2022-0141-D000CP-0001-0004	No	$0	$0
(U) Rec. 4: The DoD OIG recommended that the Commander of the U.S. Cyber Command require that the U.S. Cyber Command Insider Threat Hub Director, in coordination with the National Security Agency Insider Threat Hub Director, review the insider threat incidents received since the establishment of the Hub and report incidents that involve a covered person and meet one or more of the reporting thresholds to the DoD Insider Threat Management and Analysis Center.
D-2022-0141-D000CP-0001-0006	No	$0	$0
(U) Rec. 6: The DoD OIG recommended that the Defense Health Agency Director require that the Defense Health Agency Insider Threat Hub Director review the insider threat incidents that we determined should have been reported to the DoD Insider Threat Management and Analysis Center and report those incidents as required.
D-2022-0141-D000CP-0001-0007	No	$0	$0
(U) Rec. 7: The DoD OIG recommended that the National Security Agency/Central Security Service Director require that the National Security Agency Insider Threat Hub Director review the insider threat incidents received since the 2016 DoD Component reporting requirement was initiated and report incidents that involve a covered person and meet one or more of the reporting thresholds to the DoD Insider Threat Management and Analysis Center.