DHS has not acquired the initial SBInet technology component, or "block," in accordance with key life cycle management processes, GAO told the committee.
It said that processes associated with requirements development and management and risk management have not been implemented adequately.
For example, key risks have not been captured in the risk management repository and thus have not been proactively mitigated, according to GAO-10-340.
It said SBInet’s decreasing scope, uncertain timing, unclear value proposition, and limited life cycle management discipline and rigor are due to a range of factors, including limitations in both defined requirements and the capabilities of commercially available system components.
DHS has defined the scope of the first incremental block of SBInet capabilities; however, these capabilities have continued to shrink from what the department previously committed to deliver, said GAO, noting that the initially deployed geographical capability has been reduced from three border sectors spanning about 655 miles to two sectors spanning about 387 miles.
Further, the stringency of the performance capabilities has been relaxed so much the system is unlikely to live up to expectations, GAO said.
