The Office of Enterprise Assessments (EA) supports the Department’s mission priorities and strategic plan for the secure and safe operation of the nuclear weapons complex, science and energy research, and environmental cleanup activities by conducting independent assessments of security and safety performance throughout the Department, holding contractors accountable for violations of security and safety regulations, and providing training programs that institutionalize enterprise security and safety lessons learned. EA activities complement, but do not replace the responsibility of DOE line management to ensure compliance with security and safety requirements.
EA is organizationally independent of the DOE entities that develop and implement security and safety policy and programs and therefore can objectively provide timely information to DOE senior leadership, contractor organizations, and other stakeholders on whether national security material and information assets are appropriately protected; and whether Departmental operations provide for the safety of its employees and the public. EA activities also evaluate whether the Department is effective in promoting protection strategies and informed risk management decisions. In addition, EA has been designated to implement congressionally authorized contractor enforcement programs pertaining to classified information security, nuclear safety, and worker safety and health. Also, EA operates the DOE National Training Center (NTC) in Albuquerque, New Mexico, and maintains collaborative relationships with security and safety related organizations within and outside the Department.
EA’s key initiatives in FY 2019 are:
- Strengthening the Department’s ability to protect national security assets (special nuclear material [SNM], controlled unclassified information, and classified matter) by:
- Conducting comprehensive independent security performance assessments and follow-up assessments at DOE National Security / Category I SNM sites (those with high value assets),
- Utilizing “limited notice” safeguards and security performance tests to provide accurate, up-to-date assessments of DOE site security response capabilities, and
- Focusing on insider threats from employees who may seek to compromise National security and/or the ability of the Department to meet its mission.
- Enhancing the methods and tools used to conduct comprehensive independent cybersecurity assessments, including unannounced “red team” performance testing, to identify vulnerabilities in the Department’s National Security, Intelligence, scientific, and other information systems against external and internal attacks.
- Conducting independent performance assessments on nuclear safety, worker safety and health, and emergency management of the Department’s high hazard nuclear construction projects and operations such as those at the Los Alamos National Laboratory, Y-12 National Security Complex, Savannah River Site, Hanford Site, and Idaho National Laboratory
- Supporting and promoting secure and safe operations throughout the Department by:
- Maintaining and operating the NTC to provide advanced security and safety training programs, implementing the training reciprocity program to enhance performance and increase operational efficiency and effectiveness across the Department, and supporting security and safety related qualification programs.
- Administering the DOE contractor Enforcement activities for violations of the Department’s security and safety requirements.
- Supporting the DOE Program Management Improvement Officer in implementing program management policies and developing strategies to enhance the role of program management and managers within DOE.