Highlights for April 19 - April 23, 2004Activities Underway Office of Safeguards and Security Evaluations (OA-10) Protective Force Management and Capabilities Special Review: Force-on-force (FoF) performance testing, initiated April 12, and closeout activities were completed this week at Los Alamos National Laboratory (LANL). Planning continued for the review at Pantex. The purpose of this special review is to evaluate the effectiveness of the Department's overall protective force performance. Recent IG reports have raised concerns about protective force preparedness and training, including the fact that safety concerns have hampered realistic, on-site testing of the protective force. Composite Adversary Team (CAT): The development of lesson plans continued in support of the upcoming CAT training. The draft lesson plans are due by May 1. The training is scheduled to be conducted at the Hanford Site (Hanford). An onsite coordination visit is scheduled. Office of Cyber Security Evaluations (OA-20) Thomas Jefferson National Accelerator Facility (Jefferson Lab) Unclassified Cyber Security Inspection: Planning continued in support of this inspection. Data call and technical assessment protocol documents have been provided to site personnel for review. Announced external penetration testing is still on hold pending an agreement with the site regarding testing procedures. Onsite data collection activities are scheduled for May and onsite validation and closeout activities are scheduled for June. Nevada Test Site (NTS) Cyber Security Penetration Testing: Onsite data collection activities were conducted this week to review intrusion detection logs and conduct detailed technical briefings. Onsite closeout activities are scheduled for next week. Development of a draft report continued. The testing involved network penetration testing from the Internet, evaluation of computer modems in auto answer mode, detection of wireless networking devices, and an internal assessment to evaluate protections against a malicious insider. Sensitive Compartmented Information Facilities (SCIF) Baseline Review: Preliminary draft report development continued for the Idaho National Engineering and Environmental Laboratory (INEEL) and Kansas City Plant (KCP). Final draft reports were completed for the LANL and Pantex reviews. Reviews have now been completed at Y-12, DOE Headquarters, LLNL, LANL, INEEL, KCP, and Pantex. The full baseline review is scheduled to be completed in July 2004. This activity is being conducted at the request of IN and pursuant to the Federal Information Management Security Act (FIMSA) requirements for independent security evaluations of information systems. Pantex Classified Cyber Security Inspection: A final draft of the inspection report was prepared and provided to the site for review. The inspection included network testing activities and a review of site policies, procedures, and security plans. Office of Emergency Management Oversight (OA-30) Hanford Emergency Management Targeted Review: The emergency management inspection will focus on performance testing and DOE line management readiness assurance programs. Tabletop performance testing is scheduled as part of the review. Brookhaven National Laboratory (BNL) Emergency Management Targeted Review: Comments to the final draft report have been received and addressed. The final report is being developed for distribution. Briefings have been scheduled for the Office of Science. Office of Environment, Safety, and Health (ES&H) Evaluations (OA-40) Investigation of Worker Tank Vapor Exposures and Occupational Medicine Services at Hanford: A report containing the results of the investigation has been prepared and is undergoing final review. Oak Ridge National Laboratory (ORNL) ES&H Inspection: Onsite scoping activities were conducted last week. Activities have been coordinated with the Office of Science (SC) and the EH Office of Enforcement. Kansas City Plant (KCP) ES&H Inspection: Onsite data collection activities are scheduled.
Activities Completed Office of Safeguards and Security Evaluations (OA-10) Inspector General (IG) Records Management Review: Responded to the IG regarding an estimate of the volume of records stored in facilities other than Federal Records Centers. The DCC has been identified as one of these facilities. Office of Emergency Management Oversight (OA-30) Draft 2003 DOE Emergency Management System Annual Report: Provided comments in conjunction with SO and SSA to the Office of Emergency Operations (NA-40) on April 14. The completion of the Annual Report is a critical element in ensuring continuous improvement in the Department's in emergency management capabilities. Office of Environment, Safety, and Health (ES&H) Evaluations (OA-40) Review of Reliability of Computerized Accident/Incident Reporting System Injury and Illness Data and Performance Metrics for the Office of Environmental Management: The report has been drafted and provided to the Secretary of Energy.
|