Family Security Matters

May 23, 2013

FSM HOT TOPICS

Covert operations: Red Teams Test Security Vulnerabilities in U.S.

by JIM KOURI, CPP December 4, 2010

Using counterfeit documents and posing as employees of a company with a Nuclear Regulatory Commission license, FSI investigators successfully crossed the U.S. northern and southern borders with the type of radioactive materials that could be used to make a dirty bomb.

The Government Accountability Office's Forensic Audits and Special Investigations team (FSI), which was created in 2005 as an interdisciplinary team consisting of investigators, auditors, and analysts, conducts covert tests at the request of the Congress to identify vulnerabilities and internal control weaknesses at executive branch agencies.

These vulnerabilities and internal control weaknesses include those that could compromise homeland security, affect public safety, or have a financial impact on taxpayer's dollars.

FSI conducts covert tests as "red team" operations, meaning that FSI does not notify agencies in advance about the testing. Recently, concerns have arisen as to whether top management at the U.S. Transportation Security Administration (TSA) were negatively impacting the results of red team operations by leaking information to security screeners at the nation's airports in advance of covert testing operations.

Consequently, GAO was asked by the U.S. Congress to briefly explain FSI's processes and procedures concerning covert testing and as well as provide examples of covert activities performed

FSI has strict internal procedures related to the planning, execution, and reporting of covert activities. First, FSI and senior GAO management decide on a case-by-case basis whether engagements requiring covert tests are within the scope of GAO's authority.

Next, FSI identifies the aspects of the security system or the government program that are particularly vulnerable to terrorist threats or fraudulent activities and relies on the experience of its investigators to develop a written investigative plan. This plan typically includes the creation of fictitious identities and counterfeit documentation.

All counterfeit documents that FSI uses are manufactured using hardware, software, and materials that are available to the general public -- this allows FSI to demonstrate that any security vulnerabilities it finds could be exploited by a criminal or terrorist with moderate means and resources and would not require sophisticated insider knowledge.

FSI's investigators are the only GAO staff allowed to participate in the execution phase of testing, although audit and analyst staff are often involved in planning and operational support. Importantly, if investigators discover vulnerabilities that pose a significant and immediate threat to public safety, FSI immediately will discontinue its investigation and alert the appropriate government law enforcement agency.

Once the operation is complete, FSI conducts a "corrective action briefing" with officials at the tested entity to report that they have been the subject of a covert operation, share the results of the testing and, if necessary, suggest potential remedies for any identified control weaknesses or security vulnerabilities.

These operations provided the Congress with irrefutable evidence about the actual ability of federal agencies under "live" conditions to deal with security threats and to protect government assets from fraudsters.

Using counterfeit documents and posing as employees of a company with a Nuclear Regulatory Commission license, FSI investigators successfully crossed the U.S. northern and southern borders with the type of radioactive materials that could be used to make a dirty bomb.

Posing as private citizens, FSI investigators purchased sensitive military equipment -- including ceramic body armor inserts, guided missile radar test sets, and microcircuits used in F-14 fighter aircraft -- on the Internet from the Department of Defense's liquidation sales contractor.

Using bogus driver's licenses, FSI investigators successfully gained entry to all 24 Department of Transportation regulated urine collection sites that FSI tested, which are responsible for providing drug testing of commercial truck drivers in safety sensitive transportation positions.

Using false documents and an erroneous IRS taxpayer identification number, FSI pretended to be a charity and successfully applied to three of the Combined Financial Campaign's local 2006 campaigns.

FamilySecurityMatters.org Contributing Editor Jim Kouri, CPP is currently fifth vice-president of the National Association of Chiefs of Police and he's a columnist for The Examiner (examiner.com) and New Media Alliance (thenma.org). In addition, he's a blogger for the Cheyenne, Wyoming Fox News Radio affiliate KGAB (www.kgab.com). Jim Kouri also serves as political advisor for Emmy and Golden Globe winning actor Michael Moriarty.

blog comments powered by Disqus

Join FSM and stay informed. Get your daily Security Update delivered each day to your e-mail.

‘Premature election': Drudge makes a splash with Weiner headline

May 23, 2013 12:13 PM

You can tell Drudge loves coming up with Anthony Weiner headlines … drudgereport.com— LB.IV (@SKOORB_SIWEL) May 23, 2013 Can you blame him? Weiner, whether he likes it or not, is the gift that just keeps on giving. Ladies and gentlemen, pay attention. This is is how it’s done: Thank you @DRUDGE_REPORT. I laughed so hard […]

‘Shrinking POTUS': Twitter users offer hilarious and apt captions for White House photo

May 23, 2013 10:30 AM

Add your captions in the comments!

Sen. Harry Reid: ‘Republicans have corrupted the Founders' intent'

May 22, 2013 10:30 PM

Poor Harry Reid’s dream of bipartisanship is always out of reach, but he’s not giving up. If accusing the GOP of corrupting the very core of America is part of his charm offensive, it’s no wonder he’s having so much trouble solving that gridlock problem. The problem of gridlock is real and needs to be […]

National Review: IRS targeting adoptive parents for audit

May 22, 2013 09:50 PM

Acting IRS chief Steven Miller confessed before the Senate Finance Committee yesterday that his heart is broken over the sullied reputation of the IRS, now that the agency’s “horrible customer service” has been brought to light. We weren’t aware that the IRS had a good reputation to protect, but a report today that the IRS […]

Zing! Obama admin forgot key factor of ‘most transparent admin evah'

May 22, 2013 06:43 PM

Bam! As shoes continue to drop in multiple scandals, the Obama administration would have you believe that the most transparent administration evah is not transparent … to the man in charge? 3 (and growing) – the number of #WhiteHouse staff who apparently knew about the #IRS abuses but didn’t tell Congress (or Obama?)— Ben Howe […]

FSM Archives

FEATURED

The Obama Crony in Charge of your Medical Records

by MICHELLE MALKIN

FSM Quick Links

Must Reads
Video Picks
Donate FSM

The views expressed in the articles published in FamilySecurityMatters.org are those of the authors. These views should not be construed as the views of FamilySecurityMatters.org or of the Family Security Foundation, Inc., as an attempt to help or prevent the passage of any legislation, or as an intervention in any political campaign for public office. COPYRIGHT 2012 FAMILY SECURITY MATTERS INC.

FSM HOT TOPICS

The Incontrovertible Dead-End of Islam Revisited

Abortion? Right Move is Crisis Counseling, Birth

The London 'beheading' is straight out of al-Qaeda's terror manual

Covert operations: Red Teams Test Security Vulnerabilities in U.S.

FEATURED

FSM Quick Links

More in PUBLICATIONS ( 1 OF 25 ARTICLES )

The London 'beheading' is straight out of al-Qaeda's terror manual