Critical Releases in Homeland Security: December 31, 2008

"This assessment provides a strategic overview and predictive outlook of drug trafficking and abuse trends within the United States. The assessment identifies the primary drug threats to the nation, tracks drug availability throughout the country, and analyzes trafficking and distribution patterns of illicit drugs within the United States. It evaluates the threat posed by illegal drugs by examining availability, production and cultivation, transportation, distribution, and demand." The report contains separate sections for cocaine, methamphetamine, marijuana, heroin, controlled prescription drugs, and MDMA. Gangs, drug trafficking organizations, and illicit financing are also examined. Appendices to the report contain relevant maps and tables, as well as an overview of the scope and methodology.

"The Department of Justice (Department), like the rest of the federal government has become increasingly dependent on information technology (IT) systems to accomplish its mission. These systems contain a wide range of data regarding individuals, organizations, and other sensitive information. Any IT system inherently contains vulnerabilities that, if exploited, can expose sensitive information to unauthorized individuals, and in some cases compromise national security. To reduce the risk of compromise of its IT systems and the data they contain, it is essential that the Department minimize the vulnerabilities in its IT systems. Enhancing the security of the information contained within its IT systems is a top priority of the federal government and the Department. [...] The objectives of this audit were to identify the Department's major systemic IT security vulnerabilities and assess the Department's progress in mitigating the identified vulnerabilities, in monitoring and overseeing the implementation of the IT security program, and in improving the overall security of its IT systems. The scope of our audit was limited to a review of the vulnerability management part of the Department's IT security program, which focuses on addressing the greatest threats to IT systems. We did not review and evaluate the adequacy of other elements of the Department's overall IT security efforts, such as training or contingency planning."

"The creation of the Department of Homeland Security galvanized the Nation's fight against terrorism by consolidating and mobilizing the assets of the federal government under one roof with a single, focused mission: to ensure that the tragic events of Sept. 11, 2001, are never repeated again on American soil. After just 5 short years, we are beginning to witness the positive effects of the department's efforts and initiatives: tighter security at the borders; increased immigration enforcement; greater cooperation with our international partners; expanded partnerships with the private sector; better and more efficient passenger screening at our airports; and regenerated disaster response and recovery management. Despite these considerable accomplishments, DHS still has much to do to establish a cohesive, efficient, and effective organization. The major management challenges we have identified significantly affect the department's ability to protect our homeland and are decisive factors in setting priorities for audits, inspections, and evaluations of DHS programs and operations. As required by the Reports Consolidation Act of 2000 (Public Law 106-531), we update our assessment of management challenges annually."

This document is a revised version of the U.S. Department of Homeland Security's 'National Incident Management System' as of December 2008. "On February 28, 2003, the President issued Homeland Security Presidential Directive 5 (HSPD-5), 'Management of Domestic Incidents,' which directed the Secretary of Homeland Security to develop and administer a National Incident Management System (NIMS). This system provides a consistent nationwide template to enable Federal, State, tribal, and local governments, nongovernmental organizations (NGOs), and the private sector to work together to prevent, protect against, respond to, recover from, and mitigate the effects of incidents, regardless of cause, size, location, or complexity. [...] This document was developed through a collaborative intergovernmental partnership with significant input from the incident management functional disciplines, NGOs, and the private sector. Originally published on March 1, 2004, the document was revised in 2008 to reflect contributions from stakeholders and lessons learned during recent incidents."