Federal Land Management Agencies: Additional Actions Needed to Address Facility Security Assessment Requirements
Fast Facts
Federal land management agencies have law enforcement divisions to help protect employees and facilities on nearly 700 million acres of land. Security incidents on federal land include the 2016 armed occupation of a wildlife refuge by individuals motivated by anti-government beliefs.
Federal employees have been subject to a range of threats and assaults. But agencies have not completed all of the required facility security assessments. Officials said they do not have resources or expertise to do so.
We recommended that agencies develop a plan to address these factors and complete their assessments so they can reduce risks.
Video feed of security cameras at a Bureau of Land Management field unit.
Person at computer screen showing multiple video feeds
Highlights
What GAO Found
Data from the four federal land management agencies—the Forest Service within the U.S. Department of Agriculture and the Bureau of Land Management (BLM), Fish and Wildlife (FWS), and National Park Service (Park Service) within the Department of the Interior—showed a range of threats and assaults against agency employees in fiscal years 2013 through 2017. For example, incidents ranged from telephone threats to attempted murder against federal land management employees. However, the number of actual threats and assaults is unclear and may be higher than what is captured in available data for various reasons. For example, employees may not always report threats because they consider them a part of the job. Federal Bureau of Investigation (FBI) data for fiscal years 2013 through 2017 also showed that the FBI initiated under 100 domestic terrorism investigations into potential threats against federal land management agencies. The majority of these investigations involved BLM and individuals motivated by anti-government ideologies.
The four federal land management agencies have completed some but not all of the facility security assessments on their occupied federal facilities as required by the Interagency Security Committee (ISC). Officials at the four agencies said that either they do not have the resources, expertise, or training to conduct assessments agency-wide. FWS has a plan to complete its assessments, but BLM, the Forest Service, and the Park Service do not. Such a plan could help these agencies address the factors that have affected their ability to complete assessments. The ISC also requires that agencies conduct assessments using a methodology that meets, among other things, two key requirements: (1) consider all of the undesirable events (e.g., arson and vandalism) identified as possible risks to facilities, and (2) assess the threat, vulnerability, and consequence for each of these events. The Forest Service's methodology meets these two requirements and the Park Service's methodology partially meets the requirements, but BLM and FWS have not yet established methodologies for conducting facility security assessments. Without developing a plan for conducting all of the remaining facility security assessments and using a methodology that complies with ISC requirements, agencies may not identify the risks their facilities face or identify the countermeasures—such as security cameras or security gates—they could implement to mitigate those risks.
Why GAO Did This Study
A 2014 government report predicted that the rate of violent domestic extremist incidents would increase. In recent years, some high-profile incidents have occurred on federal lands, such as the armed occupation of a FWS wildlife refuge in 2016. Federal land management agencies manage nearly 700 million acres of federal lands and have law enforcement divisions that protect their employees and secure their facilities.
GAO was asked to review how land management agencies protect their employees and secure their facilities. For the four federal land management agencies, this report examines, among other things, (1) what is known about the number of threats and assaults against their employees and (2) the extent to which agencies met federal facility security assessment requirements. GAO analyzed available government data on threats and assaults; examined agencies' policies, procedures, and documentation on facility security assessments; compared the agencies' methodologies against ISC requirements; and interviewed land management agency, ISC, and FBI officials.
Recommendations
GAO is making six recommendations: that BLM, the Forest Service, and the Park Service develop a plan for completing facility security assessments and that BLM, FWS, and the Park Service take action to ensure their facility security assessment methodologies comply with ISC requirements. The agencies generally concurred with the recommendations.
Recommendations for Executive Action
Agency Affected | Recommendation | Status |
---|---|---|
Bureau of Land Management | The Director of BLM should develop a plan to conduct all required facility security assessments agency-wide, taking into consideration the agency's organizational structure, available resources, and training needs. (Recommendation 1) |
BLM agreed with our recommendation and issued an Instruction Memorandum for its Physical Security Compliance program that established a plan for completing all required facility security assessments. Specifically, the Instruction Memorandum provided guidance on how to complete and document the required facility security assessments, as well as deadlines for doing so. As a result, BLM has developed a plan to complete its facility security assessments agency-wide by December 30, 2022.
|
Forest Service | The Chief of the Forest Service should develop a plan to conduct all required facility security assessments agency-wide, taking into consideration the agency's organizational structure, available resources, and training needs. (Recommendation 2) |
The Forest Service agreed with our recommendation and as of March 2020, had developed and finalized a formal, four-phase plan to conduct all required facility security assessments on almost 1,200 facilities agency-wide. According to Forest Service documents, the plan provides a framework and process for agency-wide facility security assessments, and as a result, Forest Service expects to reach compliance with ISC standards within 5 years.
|
National Park Service | The Director of the Park Service should develop a plan to conduct all required facility security assessments agency-wide, taking into consideration the agency's organizational structure, available resources, and training needs. (Recommendation 3) |
Park Service agreed with our recommendation and developed a plan that includes (1) collecting data on the status of facility security assessments; (2) issuing a memo directing units to complete the assessments; (3) requiring parks to complete and report security assessments by the end of the first quarter in 2024; and (4) issuing a new Physical Security Policy.
|
National Park Service | The Director of the Park Service should update the agency's facility security assessment methodology to comply with requirements in the ISC Standard, including a step to consider the consequence of each undesirable event. (Recommendation 4) |
Park Service agreed with our recommendation , and in July 2020, the agency updated and re-released its risk management process tool agencywide, to be applied to all facilities owned by the Park Service and occupied by government employees. The tool includes a risk identification calculator that allows the assessor to consider and measure the consequence of each undesirable event.
|
Bureau of Land Management | The Director of BLM should develop a facility security assessment methodology that complies with requirements in the ISC Standard to assess all undesirable events and consider all three factors of risk for each undesirable event. (Recommendation 5) |
BLM agreed with our recommendation and in July 2022, issued a new Instruction Memorandum for its Physical Security Compliance program that mandated the use of ISC's standards and guidelines when completing facility security assessments. Specifically, the Instruction Memorandum provided guidance on how to complete and document the required facility security assessments following requirements in the ISC Standard.
|
United States Fish and Wildlife Service | The Director of FWS should develop a facility security assessment methodology that complies with requirements in the ISC Standard to assess all undesirable events and consider all three factors of risk for each undesirable event. (Recommendation 6) |
FWS agreed with our recommendation and hired a contractor that uses software to conduct facility security assessments that assess all undesirable events and considers all three factors of risk for each undesirable event, as required by the ISC Standard. According to agency documents, the first assessments began on December 9, 2020, and the contractor will conduct assessments on all 470 service-owned or direct-leased facilities. The agency anticipates completing all required assessments over the next 3 years.
|