Accessibility Statement

Client Alerts

GAO Issues Report Critical of TSA Pipeline Security Program

December 21, 2018

Authors

Stewart A. Baker, Brian Egan, Steven Reed, John C. London

Overview

On December 19, 2018, the Government Accountability Office (GAO) issued a report recommending action to address significant weaknesses in the design and implementation of the US Transportation Security Administration's (TSA) pipeline security program. The GAO's recommendations for remedying the identified weaknesses may foreshadow increased attention to both physical security and cybersecurity at critical pipeline facilities.

The GAO found that TSA's voluntary Pipeline Security Guidelines, which were revised in March 2018, were deficient in a number of ways. The GAO determined that TSA could not ensure that the guidelines reflected the latest known standards and best practices because TSA had no process for revising and reviewing the guidelines. Further, the GAO found that, due at least in part to ambiguous definitions in TSA guidelines, 34 of the nation's top 100 critical pipeline systems (determined by volume) avoided TSA scrutiny by identifying no critical facilities. 

Regarding implementation, the GAO determined that TSA's risk assessment methodology was likely out of date, as the methodology was last peer reviewed in 2007 and had not been updated since 2014, and that the TSA risk ranking tool did not use current data or align with Department of Homeland Security (DHS) priorities. Moreover, the number of pipeline security reviews varied considerably year over year due to staffing challenges and the lack of a strategic workforce plan. The GAO found that TSA did not track the implementation of past security recommendations and that there were substantial data reliability issues in the information TSA collected, including missing data, inconsistent entry formats, and data entry errors.

Among a number of recommendations, the GAO suggested that TSA establish clearer performance measures with measurable targets to monitor pipeline security. Although it is unclear whether and how TSA will implement the recommendations, a serious effort to address the concerns raised by the GAO may change the security outlook in the pipeline industry, including new security risk assessments by industry members and more regular security reviews by TSA that are aligned to new metrics and that may require new security measures. 

DHS estimated that the recommendations from the report would be implemented by November 30, 2019. We will continue to monitor the TSA's follow-up for further developments.

Professionals

Stewart A. Baker
Stewart Baker's career has spanned national security and law. He served as General Counsel of the National Security Agency, Assistant Secretary for Policy at the Department of Homeland Security, and...

Partner

Privacy & Cybersecurity, Internet, Telecom & Media, National Security/CFIUS, Export Controls

Brian Egan
Brian Egan is a distinguished international lawyer who advises on a range of complex legal issues that affect his US and foreign clients. He partners with clients to address US and multilateral...

Partner

Economic Sanctions, Export Controls, National Security/CFIUS, Anti-Money Laundering

Steven Reed
Steve Reed helps major US oil pipeline companies resolve their most difficult regulatory problems. Because of his exceptional experience with complex pipeline issues and his deep understanding of the...

Partner

Energy, Oil & Gas Pipelines, Appeals & Advocacy

John C. London
John London advises clients in matters related to international regulatory compliance, focusing particularly on anti-corruption and US export control matters. John conducts investigations and assists...

Associate

FCPA/Anti-Corruption, Export Controls, Economic Sanctions, Independent & Internal Investigations

Practices

Oil & Gas Pipelines

Privacy & Cybersecurity

Press Releases Corporate Lawyer Scott Fisher Joins Steptoe in New York January 17, 2019 Press Releases First-Chair Trial Lawyer Robyn Crowther Joins Steptoe in Los Angeles January 16, 2019 Press Releases Steptoe Announces Promotions January 9, 2019
Press Releases Steptoe Brussels Office Co-Founds Legal Diversity & Inclusion Alliance January 7, 2019 Publications Retailers Get Serious 'Must-Dos' Under New Calif. Consumer Privacy Act December 19, 2018 Media Mentions Speaker Paul Ryan's 'Decades in the Making' Documentary Features George Callas December 18, 2018 Press Releases The Hill Again Names Jason Abel, Luis Fortuño, Micah Green to Top Lobbyists List December 13, 2018 Press Releases Law360 Names Alice Loughran an MVP in Transportation December 12, 2018 Press Releases Law360 Names Stephanie Sheridan an MVP in Retail For Third Consecutive Year December 12, 2018 Press Releases Washingtonian Names Steptoe Attorneys to 'Top Lawyers' List December 3, 2018 Press Releases Paul Lee Joins Steptoe as Pro Bono Counsel November 29, 2018 Press Releases Will Turner Joins Steptoe's Corporate and Blockchain Practices in Chicago November 28, 2018

View More

We use cookies on this website to improve the user experience. For more information about how we use cookies and how to change your cookie settings, please see our Cookies Policy.