Coast Guard port security assessment program called inadequate
GAO auditors conclude the service’s program lacks a fully developed strategic plan.
The Coast Guard's program for assessing vulnerabilities at the nation's most important seaports lacks a fully developed plan detailing costs, scheduling and an overall management strategy, government auditors concluded in a new report.
The Coast Guard's Port Security Assessment Program has been riddled with cost overruns, delays and changing requirements, the Government Accountability Office said in a report released Thursday (GAO-04-1062).
The program was started after the Sept. 11 terrorist attacks to evaluate vulnerabilities at the nation's 55 most strategic commercial and military ports. About $70 million has been spent on the effort to date.
GAO said changing security requirements and higher-than-expected contractor costs prompted the Coast Guard to revise the program's scope. For example, assessments of the first eight ports cost nearly three times more than was originally expected, exceeding $1 million per port, GAO reported.
The service now expects to complete the 55 assessments by February 2005, and estimates that each will cost about $200,000.
The Coast Guard said the scope of initial assessments also changed as port owners and private companies began to conduct their own vulnerability assessments and make improvements.
Additionally, the service decided to incorporate the Geographic Information System into all assessments. GIS is a like a digital map, allowing users to update a port's profile as new information becomes available, and to access multiple layers of data about a port. For example, GIS allows a user to know not only the location of a port relative to other facilities or roads, but information such as its owner, when it was built, what kind of cargo is stored, and the depth of water around it.
GAO said GIS would be helpful, but questioned the Coast Guard's management approach for incorporating the system.
"The revised program holds promise, but the Coast Guard's implementation approach is putting that promise at increased risk, particularly for the GIS component," GAO said. "Developing a GIS that can meet the varying security requirements of 55 ports is a complex undertaking, and the Coast Guard has increased the risk by not using project management principles called for by the information technology industry's best practices."
Specifically, it is proceeding without first developing a plan that clearly shows how GIS will be managed, what it is expected to cost, or when various work steps will be completed.
"Successful implementation of the Coast Guard's port security GIS is at higher risk because the Coast Guard has not used established project management practices, including defining requirements and developing a project schedule, to oversee and guide the program," GAO said.
To help ensure the program is operated effectively, GAO recommended that the Coast Guard define and document GIS requirements and develop a plan for implementing both the GIS and the program as a whole.
The service agreed with the facts and recommendations of the report.