DHS Needs to Address Oversight and Program Deficiencies before Expanding the Insider Threat Program

We recommend that the DHS Office of the Chief Security Officer address planning, policy, and acquisition deficiencies prior to further implementation of the expanded scope of the Insider Threat Program. Specifically, the alert highlighted deficiencies we identified in planning and implementing of the expanded Insider Threat Program, including issues with acquisition management, and revision and completion of required documentation. These issues required immediate attention and corrective action to ensure efficiency and effectiveness of the program. We issued four recommendations and the Department concurred with all of them.