Audit of the DoD Component Insider Threat Reporting to the DoD Insider Threat Management and Analysis Center (Full Report is CUI)

Date Issued

Wednesday, September 28, 2022

Submitting OIG

Department of Defense OIG

Agencies Reviewed/Investigated

Department of Defense

Report Number

DODIG-2022-141

Report Type

Audit

Agency Wide

Yes

Number of Recommendations

Questioned Costs

Funds for Better Use

Hide this report from display

Yes

Open Recommendations

This report has 3 open recommendations.

Recommendation Number	Significant Recommendation	Recommended Questioned Costs	Recommended Funds for Better Use
D-2022-0141-D000CP-0001-0003.b	No	$0	$0
(U) Rec. 3.b: The DoD OIG recommended that the Under Secretary of Defense for Intelligence and Security, in coordination with the Defense Counterintelligence and Security Agency Director and the DoD Insider Threat Management and Analysis Center Director establish a policy with timelines for DoD Components to report insider threats to the DoD Insider Threat Management and Analysis Center.
D-2022-0141-D000CP-0001-0004	No	$0	$0
(U) Rec. 4: The DoD OIG recommended that the Commander of the U.S. Cyber Command require that the U.S. Cyber Command Insider Threat Hub Director, in coordination with the National Security Agency Insider Threat Hub Director, review the insider threat incidents received since the establishment of the Hub and report incidents that involve a covered person and meet one or more of the reporting thresholds to the DoD Insider Threat Management and Analysis Center.
D-2022-0141-D000CP-0001-0007	No	$0	$0
(U) Rec. 7: The DoD OIG recommended that the National Security Agency/Central Security Service Director require that the National Security Agency Insider Threat Hub Director review the insider threat incidents received since the 2016 DoD Component reporting requirement was initiated and report incidents that involve a covered person and meet one or more of the reporting thresholds to the DoD Insider Threat Management and Analysis Center.