b"<html>\n<title> - Y2K AND CONTINGENCY AND DAY 1 PLANS: IF COMPUTERS FAIL, WHAT WILL YOU DO?</title>\n<body><pre>[House Hearing, 106 Congress]\n[From the U.S. Government Printing Office]\n\n\n\n\n\n\n \n Y2K AND CONTINGENCY AND DAY 1 PLANS: IF COMPUTERS FAIL, WHAT WILL YOU \n                                  DO?\n\n=======================================================================\n\n                             JOINT HEARING\n\n                               before the\n\n                 SUBCOMMITTEE ON GOVERNMENT MANAGEMENT,\n                      INFORMATION, AND TECHNOLOGY\n\n                                 of the\n\n                     COMMITTEE ON GOVERNMENT REFORM\n\n                                and the\n\n                       SUBCOMMITTEE ON TECHNOLOGY\n\n                                 of the\n\n                          COMMITTEE ON SCIENCE\n                        HOUSE OF REPRESENTATIVES\n\n                       ONE HUNDRED SIXTH CONGRESS\n\n                             FIRST SESSION\n\n                               __________\n\n                            OCTOBER 29, 1999\n\n                               __________\n\n                     Committee on Government Reform\n\n                           Serial No. 106-51\n\n                          Committee on Science\n\n                           Serial No. 106-54\n\n                               __________\n\n   Printed for the use of the Committee on Government Reform and the \n                          Committee on Science\n\n\n     Available via the World Wide Web: http://www.house.gov/reform\n\n                                 ______\n\n                    U.S. GOVERNMENT PRINTING OFFICE\n61-119 CC                   WASHINGTON : 1999\n\n\n\n\n                     COMMITTEE ON GOVERNMENT REFORM\n\n                     DAN BURTON, Indiana, Chairman\nBENJAMIN A. GILMAN, New York         HENRY A. WAXMAN, California\nCONSTANCE A. MORELLA, Maryland       TOM LANTOS, California\nCHRISTOPHER SHAYS, Connecticut       ROBERT E. WISE, Jr., West Virginia\nILEANA ROS-LEHTINEN, Florida         MAJOR R. OWENS, New York\nJOHN M. McHUGH, New York             EDOLPHUS TOWNS, New York\nSTEPHEN HORN, California             PAUL E. KANJORSKI, Pennsylvania\nJOHN L. MICA, Florida                PATSY T. MINK, Hawaii\nTHOMAS M. DAVIS, Virginia            CAROLYN B. MALONEY, New York\nDAVID M. McINTOSH, Indiana           ELEANOR HOLMES NORTON, Washington, \nMARK E. SOUDER, Indiana                  DC\nJOE SCARBOROUGH, Florida             CHAKA FATTAH, Pennsylvania\nSTEVEN C. LaTOURETTE, Ohio           ELIJAH E. CUMMINGS, Maryland\nMARSHALL ``MARK'' SANFORD, South     DENNIS J. KUCINICH, Ohio\n    Carolina                         ROD R. BLAGOJEVICH, Illinois\nBOB BARR, Georgia                    DANNY K. DAVIS, Illinois\nDAN MILLER, Florida                  JOHN F. TIERNEY, Massachusetts\nASA HUTCHINSON, Arkansas             JIM TURNER, Texas\nLEE TERRY, Nebraska                  THOMAS H. ALLEN, Maine\nJUDY BIGGERT, Illinois               HAROLD E. FORD, Jr., Tennessee\nGREG WALDEN, Oregon                  JANICE D. SCHAKOWSKY, Illinois\nDOUG OSE, California                             ------\nPAUL RYAN, Wisconsin                 BERNARD SANDERS, Vermont \nHELEN CHENOWETH-HAGE, Idaho              (Independent)\nDAVID VITTER, Louisiana\n\n\n                      Kevin Binger, Staff Director\n                 Daniel R. Moll, Deputy Staff Director\n           David A. Kass, Deputy Counsel and Parliamentarian\n                      Carla J. Martin, Chief Clerk\n                 Phil Schiliro, Minority Staff Director\n                                 ------                                \n\n   Subcommittee on Government Management, Information, and Technology\n\n                   STEPHEN HORN, California, Chairman\nJUDY BIGGERT, Illinois               JIM TURNER, Texas\nTHOMAS M. DAVIS, Virginia            PAUL E. KANJORSKI, Pennsylvania\nGREG WALDEN, Oregon                  MAJOR R. OWENS, New York\nDOUG OSE, California                 PATSY T. MINK, Hawaii\nPAUL RYAN, Wisconsin                 CAROLYN B. MALONEY, New York\n\n                               Ex Officio\n\nDAN BURTON, Indiana                  HENRY A. WAXMAN, California\n          J. Russell George, Staff Director and Chief Counsel\n                   Matt Ryan, Senior Policy Director\n                          Chip Ahlswede, Clerk\n                    Trey Henderson, Minority Counsel\n                          COMMITTEE ON SCIENCE\n\n       HON. F. JAMES SENSENBRENNER, Jr., (R-Wisconsin), Chairman\nSHERWOOD L. BOEHLERT, New York       RALPH M. HALL, Texas, RMM**\nLAMAR SMITH, Texas                   BART GORDON, Tennessee\nCONSTANCE A. MORELLA, Maryland       JERRY F. COSTELLO, Illinois\nCURT WELDON, Pennsylvania            JAMES A. BARCIA, Michigan\nDANA ROHRABACHER, California         EDDIE BERNICE JOHNSON, Texas\nJOE BARTON, Texas                    LYNN C. WOOLSEY, California\nKEN CALVERT, California              LYNN N. RIVERS, Michigan\nNICK SMITH, Michigan                 ZOE LOFGREN, California\nROSCOE G. BARTLETT, Maryland         MICHAEL F. DOYLE, Pennsylvania\nVERNON J. EHLERS, Michigan*          SHEILA JACKSON-LEE, Texas\nDAVE WELDON, Florida                 DEBBIE STABENOW, Michigan\nGIL GUTKNECHT, Minnesota             BOB ETHERIDGE, North Carolina\nTHOMAS W. EWING, Illinois            NICK LAMPSON, Texas\nCHRIS CANNON, Utah                   JOHN B. LARSON, Connecticut\nKEVIN BRADY, Texas                   MARK UDALL, Colorado\nMERRILL COOK, Utah                   DAVID WU, Oregon\nGEORGE R. NETHERCUTT, Jr.,           ANTHONY D. WEINER, New York\n    Washington                       MICHAEL E. CAPUANO, Massachusetts\nFRANK D. LUCAS, Oklahoma             BRIAN BAIRD, Washington\nMARK GREEN, Wisconsin                JOSEPH M. HOEFFEL, Pennsylvania\nSTEVEN T. KUYKENDALL, California     DENNIS MOORE, Kansas\nGARY G. MILLER, California           VACANCY\nJUDY BIGGERT, Illinois\nMARSHALL ``MARK'' SANFORD, South \n    Carolina\nJACK METCALF, Washington\n\n\n                       Subcommittee on Technology\n\n               CONSTANCE A. MORELLA, Maryland, Chairwoman\nCURT WELDON, Pennsylvania            JAMES A. BARCIA, Michigan**\nROSCOE G. BARTLETT, Maryland         LYNN N. RIVERS, Michigan\nGIL GUTKNECHT, Minnesota*            DEBBIE STABENOW, Michigan\nTHOMAS W. EWING, Illinois            MARK UDALL, Colorado\nCHRIS CANNON, Utah                   DAVID WU, Oregon\nKEVIN BRADY, Texas                   ANTHONY D. WEINER, New York\nMERRILL COOK, Utah                   MICHAEL E. CAPUANO, Massachusetts\nMARK GREEN, Wisconsin                BART GORDON, Tennessee\nSTEVEN T. KUYKENDALL, California     BRIAN BAIRD, Washington\nGARY G. MILLER, California\n\n                               Ex Officio\n\nF. JAMES SENSENBRENNER, Jr.,         RALPH M. HALL, Texas+\n    Wisconsin+\n\n\n\n\n                            C O N T E N T S\n\n                              ----------                              \n                                                                   Page\nHearing held on October 29, 1999.................................     1\nStatement of:\n    Dyer, John, Principal Deputy, Social Security Administration; \n      Marvin J. Langston, Deputy Assistant Secretary of Defense \n      for C3I and year 2000, Department of Defense, accompanied \n      by Rear Admiral Bob Willard and Bill Curtis, Department of \n      Defense; John Gilligan, Chief Information Officer, \n      Department of Energy; Paul Cosgrave, Chief Information \n      Officer, Internal Revenue Service; and Norman E. Lorentz, \n      senior vice president, Chief Technology Officer, U.S. \n      Postal Service.............................................    47\n    Willemssen, Joel C., Director, Civil Agencies Information \n      Systems, U.S. General Accounting Office; and John Spotila, \n      Administrator, Office of Information and Regulatory \n      Affairs, Office of Management and Budget...................    12\nLetters, statements, etc., submitted for the record by:\n    Cosgrave, Paul, Chief Information Officer, Internal Revenue \n      Service, prepared statement of.............................    86\n    Davis, Hon. Thomas M., a Representative in Congress from the \n      State of Virginia, prepared statement of...................    11\n    Dyer, John, Principal Deputy, Social Security Administration, \n      prepared statement of......................................    50\n    Gilligan, John, Chief Information Officer, Department of \n      Energy, prepared statement of..............................    75\n    Horn, Hon. Stephen, a Representative in Congress from the \n      State of California, prepared statement of.................   113\n    Langston, Marvin J., Deputy Assistant Secretary of Defense \n      for C3I and year 2000, Department of Defense, prepared \n      statement of...............................................    62\n    Lorentz, Norman E., senior vice president, Chief Technology \n      Officer, U.S. Postal Service, prepared statement of........    91\n    Morella, Hon. Constance A., a Representative in Congress from \n      the State of Maryland:\n        Letter dated October 15, 1999............................   102\n        Prepared statement of....................................     3\n    Spotila, John, Administrator, Office of Information and \n      Regulatory Affairs, Office of Management and Budget, \n      prepared statement of......................................    36\n    Turner, Hon. Jim, a Representative in Congress from the State \n      of Texas, prepared statement of............................     8\n    Willemssen, Joel C., Director, Civil Agencies Information \n      Systems, U.S. General Accounting Office, prepared statement \n      of.........................................................    14\n\n\n Y2K AND CONTINGENCY AND DAY 1 PLANS: IF COMPUTERS FAIL, WHAT WILL YOU \n                                  DO?\n\n                              ----------                              \n\n\n                        FRIDAY, OCTOBER 29, 1999\n\n        House of Representatives, Subcommittee on \n            Government Management, Information, and \n            Technology of the Committee on Government \n            Reform, joint with the Subcommittee on \n            Technology of the Committee on Science,\n                                                    Washington, DC.\n    The subcommittees met, pursuant to notice, at 10 a.m., in \nroom 2154, Rayburn House Office Building, Hon. Connie Morella \n(chairwoman of the Subcommittee on Technology) presiding.\n    Present: Representatives Morella, Davis, and Turner.\n    Staff present from the Subcommittee on Government \nManagement, Information, and Technology: J. Russell George, \nstaff director and chief counsel; Matt Ryan, senior policy \ndirector; Bonnie Heald, communications director and \nprofessional staff member; Chip Ahlswede, clerk; Rob Singer, \nstaff assistant; P.J. Caceres and Deborah Oppenheim, interns; \nTrey Henderson, minority counsel; and Jean Gosa, minority staff \nassistant.\n    Mr. Davis. This hearing will come to order. I would ask \nunanimous consent that the cochair of the House Task Force on \nthe Year 2000 Problem, the Honorable Connie Morella of \nMaryland, chairwoman of the House Science Subcommittee on \nTechnology, chair today's meeting.\n    Without objection, so ordered.\n    Mrs. Morella. Thank you. Thank you, Mr. Davis.\n    I want to welcome all of you on, the past 3\\1/2\\ years, my \nScience Committee Technology Subcommittee and the Government \nReform Committee's Government Management, Information, and \nTechnology Subcommittee, chaired by Steve Horn of California, \nwho incidentally couldn't be here this morning. We have been \nengaged in the review of the year 2000 computer problem with a \nseries of joint hearings and initiatives. Our two \nsubcommittees, which comprise the House Y2K Working Group, have \nbeen pushing for greater Federal Y2K focus to correct the \nmillennium bug.\n    Since we first began our oversight hearings, we've seen \nvast and significant progress from our Federal agencies. And in \nmost instances, Y2K was finally mandated as an agencywide \npriority. Management leadership was required where previously \nthere was none, and we're very pleased with the results we've \nseen.\n    We have been comforted by the actions of a greater majority \nof Federal agencies. But unfortunately, with only 63 days \nremaining before the January 1st, 2000, deadline, there still \nremains some concern about certain agencies, especially with \nregard to their contingency and day 1 plans. To be fully \nprepared for Y2K, every organization must ensure that their day \n1 strategies are ready and that practical contingency plans are \nin place.\n    Contingency plans provide assurance that a Federal agency \nhas covered all predictable possibilities to ensure that its \nmission-critical operations can continue without disruption.\n    Our day 1 strategy provides a comprehensive set of actions \nto be executed by a Federal agency during the last days of 1999 \nand the first days of 2000. For those who may have watched the \nrecently concluded World Series on television, you may have \nseen an advertisement, teaser, for an upcoming network movie on \nY2K. In an effort to hype the movie and to create interest in \nviewers, in the teaser an ominous voice boomed, Y2K, what if \nthey're wrong?\n    Despite its questionable entertainment value, I think the \nmovie is the one that will actually have it all wrong. One of \nthe most effective methods, however, to survive the movie's \nhype and to calm any fears that may result is for Federal \nagencies to have effective contingency plans and day 1 \nstrategies that provide all Americans adequate assurances our \nFederal Government will not be adversely attacked and affected \nby Y2K.\n    Recently, the Office of Management and Budget [OMB], \nprovided guidance to assist Federal agencies in preparing day 1 \nplans. These plans are prepared for finite timeframes, like the \nend of December through early January, to help mitigate any \nproblems that may arise. They should address the full scope of \nagency activity that will be underway during that period.\n    For example, agencies must prepare to mitigate the impact \nof possible failures in internal systems, buildings and other \ninfrastructures. Furthermore, the plan should include agency \nefforts to assess the Y2K impact on its business partners, such \nas State and local governments, in delivering the Federal \nprograms.\n    I'm pleased to welcome representatives of a number of \nFederal agencies to discuss and review the status of their \ncontingency plans and day 1 strategies. And I look forward to \nthe testimony from the Social Security Administration, the \nDepartment of Defense, the Department of Energy, the Internal \nRevenue Service and the Postal Service. And in our first panel, \nwe will hear from the General Accounting Office and the Office \nof Management and Budget.\n    [The prepared statement of Hon. Constance A. Morella \nfollows:]\n\n[GRAPHIC] [TIFF OMITTED]61119.001\n\n[GRAPHIC] [TIFF OMITTED]61119.002\n\n[GRAPHIC] [TIFF OMITTED]61119.003\n\n[GRAPHIC] [TIFF OMITTED]61119.004\n\n    Mrs. Morella. And it's now my pleasure to recognize the \nranking member on the Subcommittee on Government Management, \nInformation, and Technology, the gentleman from Texas Mr. \nTurner.\n    Mr. Turner. Thank you, Madam Chairman. I want to commend \nyou and Chairman Horn, the chairman of my subcommittee, for \nyour diligence in trying to be sure that we are ready in the \nFederal Government for January 1, 2000.\n    We all know that the public faces some risk that critical \nservices provided by both the government and the private sector \nmay be disrupted by the Y2K computer problem. And as we get \ncloser to January 1st, we need to redouble our efforts to be \nsure that any disruption is reduced to a minimum.\n    Because this is the first time we've ever dealt with a \nproblem of this nature and magnitude, I'm sure that we should \nexpect the unexpected. And for that reason, we've asked every \nFederal agency to have in place a business continuity and \ncontingency plan, and a day 1 strategy to reduce the risk of \nfailures occurring in their systems, programs, and services.\n    Without such plans, when unpredicted failures occur, \nagencies would not be able to have a well-defined response, nor \nhave adequate time to remedy whatever problem may arise. So I'm \nconfident that the review of the agencies' efforts today will \nbe productive. I think if the Federal Government reaches \nJanuary 1st, 2000, without significant disruptions, a large \npart of that credit will be due to the work of these two \nsubcommittees that for many months now have diligently worked \nto be sure that the Federal Government is prepared and ready.\n    Thank you, Madam Chairman. I look forward to hearing the \ntestimony today.\n    Mrs. Morella. Thank you very much, Mr. Turner. And I \nappreciate your being here, too.\n    [The prepared statement of Hon. Jim Turner follows:]\n    [GRAPHIC] [TIFF OMITTED]61119.005\n    \n    [GRAPHIC] [TIFF OMITTED]61119.006\n    \n    Mrs. Morella. There's recognition that Congress on the \nHouse side is not in session today; therefore, a number of the \nmembers of the subcommittees will be reading the testimony and \ndiscussing it upon their return.\n    It's now my pleasure to recognize for an opening statement \nMr. Davis, who is the chairman of one of the subcommittees of \nGovernment Reform, the District of Columbia Subcommittee, and \nis a member of the Subcommittee on Government Management, \nInformation, and Technology.\n    Mr. Davis. Thank you very much.\n    This is the 23rd hearing of the year on the year 2000 \ncomputer problem that this subcommittee has held during the \nfirst session of the 106th Congress. Over the last 3 years, the \nsubcommittees have spent countless hours discussing mission-\ncritical systems and embedded chips. Federal departments and \nagencies have spent far more hours attempting to fix these \npotential problems.\n    Most recently we have looked at the Federal programs, such \nas Medicare and Medicaid, that affect millions of the Nation's \nmost vulnerable citizens, the elderly, the impoverished and the \nsick. But now with only 63 days remaining until the January 1st \ndeadline, it's time to talk about the contingencies, the what-\nifs.\n    What if, despite the best efforts, some computers fail? \nWhat if they continue working but spew out erroneous data? How \nprepared are Federal departments and agencies to cope with \nthese possible situations? What are their plans? What are their \nplans for day 1, the critical days leading up to midnight \nJanuary 1st and the days immediately afterwards?\n    I'm concerned to hear that the Internal Revenue Service has \nfound some unsolved problems with its inventory. Could other \nFederal agencies find similar discrepancies? Just, frankly, the \nIRS under their leadership at this point, I think, is one of \nthe most progressive in terms of dealing with the computers and \nthe like. The head of the IRS comes out of that industry.\n    Clearly, we need to have a candid discussion on contingency \nplans today. We need to ensure that the Federal Government and \nthe services it provides will not fail, whether the date is \nDecember 31st, 1999, or January 1st, 2000.\n    Thank you.\n    Mrs. Morella. Thank you, Mr. Davis.\n    [The prepared statement of Hon. Thomas M. Davis follows:]\n    [GRAPHIC] [TIFF OMITTED]61119.007\n    \n    Mrs. Morella. And now as we usually do, we will swear in \nour witnesses, and on the first panel, Mr. Willemssen and Mr. \nSpotila.\n    [Witnesses sworn.]\n    Mrs. Morella. The record will show that the panelists have \nsworn to tell the truth.\n    And now, as is, again, our tradition, we will give you each \nabout 5 minutes, approximately, to give your testimony, knowing \nfull well that your entire testimony will be included verbatim \nin the record.\n    And so we will start now, as usual, with Mr. Willemssen. I \ndon't know how many hearings you've been at, sir, but you \nreally have been stalwart. We feel that you're part of the \ncommittee. Thank you, Mr. Willemssen.\n\n  STATEMENTS OF JOEL C. WILLEMSSEN, DIRECTOR, CIVIL AGENCIES \n INFORMATION SYSTEMS, U.S. GENERAL ACCOUNTING OFFICE; AND JOHN \n SPOTILA, ADMINISTRATOR, OFFICE OF INFORMATION AND REGULATORY \n            AFFAIRS, OFFICE OF MANAGEMENT AND BUDGET\n\n    Mr. Willemssen. Thank you, Chairwoman Morella, Ranking \nMember Turner, Congressman Davis. Thank you for inviting GAO to \ntestify today on Y2K business continuity and contingency \nplanning and day 1 planning.\n    As requested, I will briefly summarize our statement. We've \npreviously testified on the importance of Y2K business \ncontinuity and contingency planning. No one knows exactly for \nsure what the rollover period will bring, and, therefore, such \nplanning is essential to helping ensure continued agency \noperations in the event that disruptions occur.\n    Over time we've seen major improvements in the Federal \nagencies' efforts in business continuity and contingency \nplanning. For example, in early 1998, we testified that several \nagencies reported that they plan to develop contingency plans \nonly if they fell behind schedule in completing their Y2K work. \nBy contrast, less than a year later, in January 1999, we \ntestified that many agencies had reported that they had either \ncompleted or had drafted contingency plans. These improvements \ncontinue. For example, we reviewed agencies' most recent \nsubmissions to OMB of updated continuity and contingency plans \nand found that all agencies had identified key business \nprocesses as called for in our guidance. A key aspect of \nbusiness continuity and contingency planning is validating or \ntesting plans. It's one thing to develop a written plan, but \nquite another to see whether the plan will actually work as \nenvisioned. That's why we've emphasized the need for testing of \ncontingency plans.\n    In reviewing the high-level plans submitted to OMB, we were \nable to identify 20 agencies that discussed their validation \nstrategies. These strategies encompassed a range of activities, \nincluding desktop exercises and simulations. In addition to \nreviewing these high-level plans, we've previously reported on \nthe business continuity and contingency planning of agencies \nand their components, and we found some uneven progress. For \nexample, we found some agencies have instituted key processes, \nwhile other agencies still have a ways to go.\n    Another important element of business continuity and \ncontingency planning that has not yet been adequately addressed \nis the potential cost of implementing plans. Our guide calls on \nagencies to assess the costs and benefits of identified \nalternative contingency strategies. We also testified in June \nthat OMB's assessment of agency plans should consider whether \nagencies provided estimated costs, and, if not, OMB should \nrequire that this information be submitted so that it is \navailable on a governmentwide basis. However, OMB has not yet \nrequired agencies to provide these cost estimates, although we \ndid identify five agencies which did so in their submissions.\n    Regarding day 1 planning, earlier this month we did issue a \nguide to assist agencies in implementing their strategies. \nBriefly the objectives of a day 1 strategy are to, one, \nposition the organization to readily identify year 2000 induced \nproblems, take needed corrective actions, and minimize adverse \nimpact on agency operations and key business processes. And \nsecond, it's very important that the organization be in a \nposition to provide information on their Y2K condition to their \ntop executives, other business partners and to the public. Our \nguidance provides a conceptual framework for helping agencies \naddress those objectives.\n    For the day 1 plans that were due on October 15th, OMB \nasked agencies to address seven key elements, elements such as \na schedule of activities, contractor availability, \ncommunications with the work force, and communications with the \npublic. A review of the submissions found that about 40 percent \nof the agencies addressed all required elements.\n    Another important part of day 1 planning is ensuring that \nthe day 1 strategy can actually be executed; therefore, day 1 \nplans and their key processes and timetables should be reviewed \nand, if feasible, rehearsed. Our review of day 1 plans found \nthat 19 agencies discussed rehearsing their strategies, \nalthough some did not provide specific dates of their planned \nor completed rehearsals.\n    That completes a summary of my statement. And I would be \npleased to address any questions you may have. Thank you.\n    Mrs. Morella. Thank you Mr. Willemssen.\n    [The prepared statement of Mr. Willemssen follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.008\n    \n    [GRAPHIC] [TIFF OMITTED]61119.009\n    \n    [GRAPHIC] [TIFF OMITTED]61119.010\n    \n    [GRAPHIC] [TIFF OMITTED]61119.011\n    \n    [GRAPHIC] [TIFF OMITTED]61119.012\n    \n    [GRAPHIC] [TIFF OMITTED]61119.013\n    \n    [GRAPHIC] [TIFF OMITTED]61119.014\n    \n    [GRAPHIC] [TIFF OMITTED]61119.015\n    \n    [GRAPHIC] [TIFF OMITTED]61119.016\n    \n    [GRAPHIC] [TIFF OMITTED]61119.017\n    \n    [GRAPHIC] [TIFF OMITTED]61119.018\n    \n    [GRAPHIC] [TIFF OMITTED]61119.019\n    \n    [GRAPHIC] [TIFF OMITTED]61119.020\n    \n    [GRAPHIC] [TIFF OMITTED]61119.021\n    \n    [GRAPHIC] [TIFF OMITTED]61119.022\n    \n    [GRAPHIC] [TIFF OMITTED]61119.023\n    \n    [GRAPHIC] [TIFF OMITTED]61119.024\n    \n    [GRAPHIC] [TIFF OMITTED]61119.025\n    \n    [GRAPHIC] [TIFF OMITTED]61119.026\n    \n    [GRAPHIC] [TIFF OMITTED]61119.027\n    \n    Mrs. Morella. We now look forward to hearing from Mr. \nSpotila.\n    Mr. Spotila. Good morning, Chairwoman Morella and \nCongressman Turner and Congressman Davis. Let me start by \nthanking you for your continuing interest in the Y2K problem. \nAs I indicated to you in my testimony on October 6th, your \nearly and continued involvement in this issue has made a \ndramatic difference in the Federal Government's preparedness.\n    Before discussing our day 1 planning efforts, let me update \nyou on the status of our other work. As of October, the \nagencies report that 99 percent of Federal mission-critical \nsystems are compliant, an increase from the 98 percent that I \nreported earlier this month.\n    This reflects notice from five more departments; \nAgriculture, Commerce, Energy, Health and Human Services and \nTransportation, that their critical systems are ready. Although \na small number of critical systems are still not quite done, in \nall cases the agencies involved have assured us that they will \ncomplete their work before the end of the year. Moreover, they \nall have contingency plans in place for these systems. Compared \nto where we were just last year, this is a huge accomplishment.\n    Even though we expect all of our mission-critical systems \nto be ready by January 1st, it is still important that every \nagency have a business continuity and contingency plan, or \nBCCP, in place, including a detailed day 1 plan. These plans \ndescribe the steps each agency will take to prepare for the 1st \nof January. They should address the full scope of agency \nactivity with steps to mitigate the impact of any failures \ninvolving internal systems, buildings or other infrastructure.\n    Agencies must be ready to assess the impact of any Y2K \nproblem on their partners and constituencies and to provide \nthem with appropriate assistance. They must also be ready to \nprovide information about any Y2K problem to their management \npartners and the public.\n    As GAO's day 1 guidance notes, effective day 1 planning \nwill position an agency to identify year 2000 induced problems, \ntake corrective action and minimize adverse impact on agency \noperations and key business processes. We are working closely \nwith the agencies and GAO to share information about how best \nto develop effective plans. GAO and OMB have issued coordinated \nguidance to the agencies.\n    My staff has reviewed agency plans and is working with \nagencies to improve those plans. We are all learning as we go. \nThe work we are asking agencies to do has never been done \nbefore. In an organization as large and diversified as the \nFederal Government, there is no one-size-fits-all solution, and \ngiven this challenge, the agencies have responded well.\n    Based on our initial review of agency plans, we believe \nmost large agencies are on track. While they need to add more \ndetail to the plans, most do address all of the critical \nelements of effective day 1 planning. A few of the larger \nagencies have had more difficulty. Here we have engaged them at \na senior level to ensure that their efforts improve. I have \nalready spoken personally with several agencies to see that \ntheir plans are revised to address our concerns.\n    OMB staff are following up these discussions with each \nagency individually. While a few of the small and independent \nagencies have done excellent work, a number of them have \nprovided incomplete plans or none at all. To help speed their \nwork, we are meeting with them next week. We will have one or \ntwo of the agencies that provided excellent plans describe what \nthe plans should entail. I note that GAO has agreed to \nparticipate in that meeting as well. Their work has been \ninvaluable to agency progress in this area.\n    After further work with the agencies, we will ask them to \nprovide us with revised plans next month. From our review of \nthe existing day 1 plans, we are beginning to see some patterns \nof best practices. The importance of good communications cannot \nbe underestimated. If unforeseen problems arise, agencies must \nbe able to communicate with their work force, their partners \nand the public.\n    Assuring the ability to communicate is so important that a \nredundant communications capability should be put into place. \nThe best plans provide a detailed schedule of activities that \nwill take place during the rollover period. They anticipate the \nsequence and timing of such activities as shutting down \ncomputer systems and bringing them back up, checking their \nviability and contacting key business partners.\n    The best plans ensure that the right personnel will be \navailable at the right time, whether on duty or on call and \nwhether on or offsite. Such personnel may be contractors or \nemployees and may include building technicians, computer \nprogrammers, telecommunications experts, program staff, \ncontracting officers, legal counsel, public affairs staff and \nsenior management.\n    Finally, we are aware that the Y2K transition is an \nopportunity for those who might want to disrupt agency \nactivity, whether mischiefmakers or those with criminal intent. \nThe best plans describe additional steps to guard against such \nsecurity risks, whether to facilities, personnel or systems.\n    We are all on a learning curve here. As we identify other \nbest practices, we will share them across agencies. Such \ncooperation will continue to be essential to our success in \npreparing for Y2K. We are entering the home stretch of our year \n2000 efforts. As in any race, it is time to begin sprinting \ntoward the finish. Day 1 plans are the critical last piece of \nour preparations. There will be no letup in our efforts during \nthe remaining 63 days.\n    Thank you for the opportunity to continue to share \ninformation with you on the administration's progress. I would \nbe pleased to answer any questions you may have.\n    Mrs. Morella. Thank you, Mr. Spotila.\n    [The prepared statement of Mr. Spotila follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.028\n    \n    [GRAPHIC] [TIFF OMITTED]61119.029\n    \n    [GRAPHIC] [TIFF OMITTED]61119.030\n    \n    [GRAPHIC] [TIFF OMITTED]61119.031\n    \n    Mrs. Morella. I am particularly pleased having both of you \nhere, because you have been partners in trying to make sure \nthat the Federal agencies, as well as the outreach and end-to-\nend testing, has been taking place.\n    As we start our questioning, I will start off with Mr. \nWillemssen. In your statement you mention several agencies at \nrisk of not having solid, well-tested contingency plans, \nincluding the IRS, that will be testifying today, Federal \nBureau of Investigations, Drug Enforcement Agency, Agency of \nInternational Development.\n    I would like to have you tell us what you see the real-life \nconsequences of not having plans ready.\n    Mr. Willemssen. To the extent that agencies do not have \ncontingency plans and continuity plans ready, and to the extent \nthat those plans haven't been well tested, those agencies run \nthe risk that in the event that disruptions occur, their \nresponses to those disruptions will be more ad hoc and chaotic \nin nature, rather than very well planned with a clear roadmap \non who is to do what and when, and who to report to who on what \nis going on.\n    That is the whole basis of having these plans in place and \ntesting these plans. To the extent that that isn't there, we do \nrun this risk of an untrained response that is a more ad hoc in \nnature, that may not be the right response, and, therefore, the \nresponse may not address the Y2K problem that may have \noccurred.\n    Mrs. Morella. So the planning is critically necessary even \nthough that may not be the end either, there may be some other \nimplications and consequences resulting from it, but far better \nthan to have what could happen without those contingency plans.\n    You mentioned also in your statement the Y2K risk facing \nState-run programs--this concerns me greatly--like Medicaid and \nunemployment insurance. Again, what are the consequences of not \nhaving those plans ready?\n    Mr. Willemssen. The likely consequences in those kinds of \nbenefit-driven programs is that, in the event that there are \nY2K disruptions and contingency plans aren't ready to be \nimplemented, benefits could be delayed or benefit amounts could \nbe inaccurate. And, therefore, it's critically important that \nthe contingency plans be pursued and be tested.\n    I'm more optimistic actually in this area now because of \nsome of the fine efforts of the lead Federal agencies in \nunderstanding that this is a critical issue, and States are \nbeginning--even those States that were lagging behind--are \nbeginning to address this very forcefully. So I think there's \nreason for much more optimism, even compared to just a few \nweeks ago.\n    Mrs. Morella. Agencies should not be advising the public, \nshould they, of possible consequences in terms of enlightening \nthem?\n    Mr. Willemssen. I think agencies have to make a very \nreasoned decision on what they announce to the public and what \nthey don't. As a side note, many of the business continuity and \ncontingency plans and day 1 strategies do have some level of \nclassification such as for official use only. One of the \nreasons for that relates to something you had mentioned early \non. There's a possible security risk to the extent that \nagencies publish too much information about what they plan to \ndo in the event of a Y2K disruption. So that's something that I \nthink agencies have to make a reasoned decision on.\n    I think the bottom line is making sure that plans are in \nplace, that they have been tested, and that all the agencies \nare poised during the rollover period to address any \ndisruptions that may result.\n    Mrs. Morella. Thank you.\n    Mr. Spotila, according to OMB--and I very much appreciate \nyour coming out with the requirement that by October 15th, the \nagencies have their day 1 plans and contingency plans in \neffect. But according to OMB, day 1 plans should include \nspecific data such as personnel that should be on call or on \nduty. And I wonder, what do you believe will be the number of \nFederal employees that will be on call or on duty, as the \nstatement designates, on January 1st, 2000?\n    I guess what I'm asking you is, how does this compare, \nJanuary 1st, 2000, with a regular day for the Federal \nGovernment?\n    Mr. Spotila. We don't yet have a specific number of people \nthat we anticipate will be on duty in this effort. One of the \ngeneral comments that I made in my testimony concerning the day \n1 plans was that a number of the agencies need to supply more \ndetail than they have. To some degree this is a process where \nwe think we will get more specific information very quickly in \nthe weeks to come.\n    Certainly not everyone will be working. We anticipate in \neach case that core staffs will be available, targeted much \nmore at the specific needs of agencies on an individual basis. \nSome of those needs relate to verifying that the systems are \ngoing to work, bringing them down, bringing them back up again. \nSome of them involve response capability. In some cases, there \nwill be people on call who will not physically be onsite as the \nrollover occurs.\n    We will have better information as we get closer to the end \nof the year in this regard, but we don't quite have it yet.\n    Mrs. Morella. But obviously there will be a tremendous \nnumber of people who will be ready who will be on call, as you \nsay--.\n    Mr. Spotila. That's true.\n    Mrs. Morella [continuing]. Ready to respond? It would be \ninteresting as you continue on in the remaining couple of \nmonths to keep us apprised of that, too.\n    And one final question, before I turn to Mr. Turner for his \nline of questioning, is that Mr. Willemssen mentioned something \nthat I think you would agree with, and that is that we don't \nreally have the cost estimates of what implementation is going \nto cost. And I'm curious about what you're going to do to \nrequire it.\n    I don't think you've required it at this point, cost \nestimates. And I think they should be something that we should \nbe able to scrutinize.\n    Mr. Spotila. We have had discussions with the agencies on \nthis subject. Our sense has been that the most important focus \nfor the agencies right now should be getting their plans, their \ndetailed plans, ready so that we know what it is they're going \nto do or what they feel they will need to do.\n    From a costs standpoint, the agencies understand at the \nmoment that they are expected to absorb these costs initially; \nthey all have resources, we think, to do that. We made sure to \ntell them that if any feel that budget considerations are \ninterfering with their plans, they need to let us know, and we \nwill make sure that resources are available.\n    We certainly will come back to the question of cost \nestimating, but we need to do it after the plans are ready in \nmore detail so we know what it is that we are actually dealing \nwith. It's not something we're insensitive to, but it is true \nwe have not made this a priority equal to getting ready for the \nevent itself.\n    Mrs. Morella. You might consider having at least some \nestimates submitted to scrutinize, because it was my \nunderstanding that it was in August 1999 when I think it was \nDepartment of Health and Human Services estimated that it would \ncost about $99 to implement contingency and day 1 plan.\n    Mr. Spotila. I think that we will, in fact, ask for \nestimates. We've actually gotten some of them in already. We've \nencouraged agencies to give us estimates as they are ready to \ndo so, and I think as we proceed closer to the end of the year, \nthat is something we will be asking of them.\n    Mrs. Morella. Thank you.\n    I am now pleased to recognize Mr. Turner for his line of \nquestioning.\n    Mr. Turner. Thank you, Ms. Morella.\n    In my opening comments I made reference to the fact that we \nprobably should all put ourself in the state of mind where we \nare ready to expect the unexpected. And one of the things that \nhas concerned me, even after all of our efforts to prepare for \nY2K it still seems to be very possible whether it's through \nefforts by those who would do harm to our country or simply \nfrom those who are on some college campus disseminating \ninformation over the Internet, that perhaps we could have on \nJanuary 1st a lot of misinformation designed with ill intent or \nsimply out of a spirit of being a prankster to try to mislead \npeople and to cause people to take certain actions they might \nnot otherwise take based on the information that that is \ndisseminated.\n    I was wondering whether or not we have considered, or \nperhaps Mr. Koskinen in his efforts has considered creating \nsome type of rapid response team that would act as a \nclearinghouse as we enter the new year to provide a source of \ncredibility regarding misinformation or information that may \ncirculate, whether it be over the Internet or through some \nother medium, about the existence or nonexistence of Y2K \nproblems.\n    It seems to me that that type of panel would need to be \npeople of some renown who bear credibility, perhaps a three-\nmember panel of members who would be the spokespersons \nregarding Y2K problems. Madam Chairman, I know you get the same \nkind of e-mail I do. There's always some kind of rumor \ncirculating on the Internet about something the government is \nabout to pass or put a tax on the Internet or something like \nthat, and we all end up writing these letters back saying \nthat's just a rumor, there's no basis, there's no legislation \npending on that subject.\n    It just strikes me that on January 1st, there's a \npossibility that some may try to circulate misinformation that \nmight cause people to take actions that otherwise they would \nnot take. If we had a panel in place of credible individuals \nthrough which all of that information could clear, then they \ncould turn to the agencies and turn to the private sector to \nget the truth, and then be in a position to respond through the \nmedia regarding what are the facts. Perhaps, we could avoid \nsome problems that might otherwise occur.\n    Have we given any thought to that, or have any of the \nefforts of Mr. Koskinen directed in that way?\n    Mr. Spotila. Actually, Congressman, we've been giving quite \na bit of thought to that. Let me address it in two respects. \nFirst of all, as I mentioned in my testimony, from a security \nstandpoint we're asking each agency in its day 1 plan to \naddress the question of protecting systems from anyone who \nwould cause mischief. That's an element here.\n    With respect to misinformation that might be put out, here, \ntoo, agencies will be focused on how that information might \nrelate to them individually. In a coordinated way, the \nInformation Coordination Center will help, John Koskinen and \nthe President's Council on Year 2000 Conversion have a plan for \ncollecting and exchanging information in this area, working \nclosely with their private sector coordinators and others \nthroughout State and local government to be in a position to \nverify what information is true and to be able to disseminate \nit.\n    The Coordination Center will play a key role in terms of \noverall coordination, even though we are also looking at \nindividual agencies to be prepared to address agency specific \nconcerns.\n    Mr. Turner. Well, I would urge you to maybe pursue it a \nlittle bit further, because I think if we could enlist the \nassistance of some high-profile personalities who have \ncredibility, a Walter Cronkite type who would be a \nspokesperson, along perhaps with one or two others. I don't \nthink it's going to help if there's some rumor or \nmisinformation floating, say, on the Internet, and it's \nreported that the government denies the report. Unfortunately, \nwe all know the government oftentimes does not have the \ncredibility that we might need.\n    So it would seem to me if we could attach a personality to \nthat effort that would be known to be trustworthy by the \nAmerican public, perhaps we could avoid some problems that \notherwise might occur.\n    Mr. Spotila. I think that's a very constructive suggestion. \nWe certainly will bring that up with John Koskinen and see what \ncan be done in that area.\n    Mr. Turner. Thank you. I don't have any other further \nquestions.\n    Mrs. Morella. What are you going to be doing, Mr. Spotila, \non that day? Where are you going to be?\n    Mr. Spotila. I think I will--actually, I asked my staff to \ntell me where they think I should be.\n    Mrs. Morella. Never leave yourself so wide open.\n    Mr. Spotila. I'm certainly making myself available to be \nright on duty here. But we're trying to determine whether that \nwould be positive or negative in the view of the people that \nare actually going to be dealing with our problems.\n    Mrs. Morella. But I appreciate Mr. Turner asking that \nquestion because as we go on, I would like to find out, you \nknow, specifically how that ICC is going to operate.\n    Mr. Spotila. Yes.\n    Mrs. Morella. I have a question, the same question actually \nfor both of you. IRS is going to be a witness on our next \npanel, and recently IRS reported that the poor quality of its \ncomputer inventory poses a high risk to its Y2K effort. I quote \nthat exactly. That was quoted in a letter to Mr. Archer, the \nchairman of the Ways and Means Committee. And it says the \nquality of the IRS's inventory currently poses a high risk to \nthe Y2K effort.\n    Therefore, my question to both of you is, in your opinion, \nwhat can be done to--or what can the IRS do to mitigate that \npotential Y2K problem, those failures, and does the IRS have a \npractical contingency plan in place? They will have an \nopportunity to respond, but I wanted to hear from you before we \ndismiss this first panel.\n    Mr. Willemssen. Well, one, Chairwoman Morella, I think it \nis of concern to hear a major Federal agency still talking \nabout the term ``inventory'' at this late date. In testifying \non the IRS, which I did as far back as February 1997, I know \nthe IRS has a far-flung information systems structure, many of \ntheir systems out in the field, many of the systems homegrown, \nso it is a difficult endeavor to get a handle on all of those.\n    In terms of your direct question on what should they do, I \nthink it's just ensuring that their key business processes, \nwhether they're tax refunds or tax processing, however IRS has \ndefined them, that they have thoroughly decomposed those \nprocesses and identified their key systems that they need to be \nready in order to do business as usual come the turn of the \nyear.\n    Mrs. Morella. Do they have time to do that?\n    Mr. Willemssen. I think one thing in their favor is given \nthe background of the Commissioner of the Internal Revenue \nService, he's made it very clear this has been a top priority \nfor him for some time, and he also made it clear, I think, in \nhearings I've been at with him that this was a massive \nundertaking, that it had risks associated with it. And I think \nthere is time to focus again on those most important business \nprocesses and decompose them and focus on the supporting \nsystems.\n    Mrs. Morella. Mr. Spotila.\n    Mr. Spotila. From our perspective, I agree completely with \nMr. Willemssen in all of those respects. We're concerned. We \nhave not had quite as much information of IRS as we would like \nto see. We recognize the importance of this, and we certainly \nare going to do what we can do to help the situation.\n    Mrs. Morella. Well, we will be interested to also hear from \nIRS about, you know, what they are doing, particularly in light \nof that rather frightening statement.\n    Let me ask you about GAO, you recently reported that only \n40 percent of Federal agencies submitted complete contingency \nplans with information on the seven criteria that you have \nestablished. What are you going to do to make sure that \nagencies complete these plans?\n    Mr. Willemssen. Well, in terms of their day 1 strategy and \nthe required seven elements of OMB, I would concur with Mr. \nSpotila's comments that OMB is working with these agencies to \nfollowup where there are holes and where more information is \nneeded. I think we also have to keep in mind that many agencies \nwere out front and had a lot of this detail all pulled \ntogether; many did not.\n    The requirement for day 1 strategies was initially \ncontained in OMB's September 13th quarterly report summary. So \nthat was the first time a requirement was sent out. OMB's \nguidance on what to include, I believe, came out on October \n13th, and then the strategies were due 2 days later.\n    So we're talking about a very compressed time. I think we \nhave to give the agencies that did get a late start some \nrecognition that they have time to improve, but this has to be \na top priority at this point in time. I think OMB shares that \nview, and through our reviews and evaluations, we have not seen \nevidence of agencies resisting day 1 concept. What they don't \nhave in many cases are all the details worked out yet, and \nthat's what they have to focus on now.\n    Mrs. Morella. I know that GAO is the one who has suggested \nthat OMB come up with the criteria, which they did so well, \nestablished the October 15th deadline. Now, in light of the \nquestion that I asked Mr. Willemssen, which is directed to you \nnow, do you have another deadline that you have established \nwhere you say you now must get the responses, your contingency \nplans in effect by another deadline?\n    Mr. Spotila. We're proceeding on two levels: one, \nindividually with agencies, based on what they have submitted \nto us, or in a couple of instances where they have not \nsubmitted to us, to work with them to get this fixed.\n    We've also told them informally that we will be asking them \nfor a new updated report next month, so there is going to be a \nnew November deadline for them. That has not formally gone out \nyet, but they have all been advised that it is coming. Our \npriority has been working with GAO and working with the \nagencies to get these plans in their proper shape.\n    Mrs. Morella. It appears as though they may be working very \nlong days in order to do it, and I think you should set an \nearly November deadline for that, too.\n    Mr. Spotila. We intend to.\n    Mrs. Morella. I guess I just have one more question so we \ncan get on to our next panel. And I know that you have always \nbeen available to respond to other questions that we may \nsubmit.\n    Another day 1 strategy requirement is to include data on \ncontractor availability. Do you believe that this requirement \nis being followed, being overlooked? Because I think it's \nexceedingly important, and we've discussed this in a number of \nour other hearings, exceedingly important for interoperability \nand for the successful operation of many of the Federal \nmission-critical systems.\n    What have your investigations revealed thus far with \nrespect to Federal contractors?\n    Mr. Willemssen. In taking a look at the strategies that \nhave been submitted thus far, it's a bit of a mix. Some of the \nagencies haven't addressed the issue, and don't know the \navailability. Other agencies are still working on this. I think \nthis is a fairly critical issue, and it's critical from a \ncouple respects. One is making sure from a governmentwide basis \nthat not everyone thinks they have a relationship with the same \nvendor, and making sure that that vendor isn't overextended. \nAnd then second is laying out in specified detail exactly who \nto contact with that contractor or vendor should disruptions \noccur.\n    Mrs. Morella. Mr. Spotila, would you like to comment on \nthat?\n    Mr. Spotila. Yes. Once again I would agree. I think in \ngeneral, with most of the agencies, we need more detailed \ninformation on this subject. One of our observations is that a \nnumber of the agencies need to do more in this area. Some have \ndone real well. Social Security whom you will be hearing from, \nhas done an excellent job. NASA and the Department of \nTransportation have done very well. But there are a number of \nagencies that need to add considerable detail here, and that's \none of the areas we're pressing.\n    Mrs. Morella. This is going to be one of the questions \nwe're going to ask to our second panel what they're doing, and \nI'm glad that you're both very aware of it and continue to ask \nfor that response.\n    Just finally the issue of computer security, this is one, \nas you know, I think is critically important as it relates to \nY2K and even beyond that. How certain are you that the \nremediation efforts of the Federal systems have been conducted \nby firms that are U.S.-owned, and then if you would like to \ncomment on what the risks might be that foreign agents or those \nwith antigovernment views might have access to sensitive \ncomputer data. If I could ask both of you if you can answer \nthat.\n    Mr. Willemssen. I will answer that in two ways. One is to \ngive you my nonscientific answer that I think overall if you \ncompare what has happened on remediation to what we thought \nwould happen in the 1996 or 1997 timeframe, we've been a little \nsurprised that more of the remediation work was actually done \nin-house and by existing contractors as it pertains to Federal \nagencies than we would have thought. There really wasn't as \nmuch work that went outside of the existing agency-contractor \nrelationships as we would have envisioned.\n    Point two, we share your concern about Y2K security risks. \nFrankly, we haven't at this point done a lot of work on this. \nWe do have some ongoing work looking at that right now with \nsome high-profile agencies, such as the Federal Aviation \nAdministration and Department of Energy. At these agencies we \nare pursuing the issue to see what kind of controls and \nprocesses the agencies have in place.\n    Overall, I think that the executive branch is very, very \naware of this particular issue, and it's brought up in almost \nevery meeting I'm in on Y2K over the last couple of months.\n    Mr. Spotila. I would echo those comments. In general, OMB \ndoes not have individual agency information in this regard. \nWe've relied on the agencies and their decisionmaking process. \nWe have worked in coordination with the National Security \nCouncil, with the President's advisor on counterterrorism Mr. \nClark, and the CIAO office. This is something we are sensitive \nto. We have looked at security concerns here, and we think that \nthe right steps are being taken, but it certainly is not \nsomething that we are taking for granted.\n    Mrs. Morella. Well, I'm glad to hear that because I think \nit's critically important. We focus on it because this whole \nconcept of the potential for the computer security could dwarf \nthe problems of Y2K.\n    Mr. Turner, do you have any final comments?\n    Mr. Turner. No final questions, thank you.\n    Mrs. Morella. I want to thank panel one for the work you've \ndone not only in your presentations and responses today, but \ncontinuously that you've done. Thank you very much.\n    Mr. Willemssen. Thank you.\n    Mr. Spotila. Thank you.\n    Mrs. Morella. Now we will ask the second panel to come \nforward. Mr. Dyer, Mr. Langston, Mr. Gilligan, Mr. Cosgrave, \nMr. Lorentz.\n    Gentlemen, before you get comfortable, as we did with the \nfirst panel, I would ask you kindly to stand and raise your \nright hand.\n    [Witnesses sworn.]\n    Mrs. Morella. Again, the record will demonstrate \naffirmative response to that.\n    So we're pleased to have on our second panel John Dyer, \nPrincipal Deputy of the Social Security Administration; Dr. \nMarvin J. Langston, Deputy Assistant Secretary of Defense for \nC31 and the Year 2000, Department of Defense; John Gilligan, \nChief Information Officer of the Department of Energy; Mr. Paul \nCosgrave, who is the Chief Information Officer of the Internal \nRevenue Service; Mr. Norman E. Lorentz, Senior Vice President, \nChief Technology Officer of the United States Postal Service.\n    Gentlemen, I'm glad you're here, it's very important that \nwe hear from you. And I think it was appropriate that you also \nheard the testimony of GAO and OMB preceding you. And again, \nfollowing sort of a 5-minute rule, we're very flexible about \nit.\n    We will start off, and I will let you know that we will \nhope to have time for questioning and that your entire \nstatement will be in the record, so you can give us a synopsis, \nif you desire. So we will start off with you then.\n    Mr. Dyer, thank you for being here.\n\n  STATEMENTS OF JOHN DYER, PRINCIPAL DEPUTY, SOCIAL SECURITY \nADMINISTRATION; MARVIN J. LANGSTON, DEPUTY ASSISTANT SECRETARY \n   OF DEFENSE FOR C3I AND YEAR 2000, DEPARTMENT OF DEFENSE, \n   ACCOMPANIED BY REAR ADMIRAL BOB WILLARD AND BILL CURTIS, \n    DEPARTMENT OF DEFENSE; JOHN GILLIGAN, CHIEF INFORMATION \nOFFICER, DEPARTMENT OF ENERGY; PAUL COSGRAVE, CHIEF INFORMATION \n   OFFICER, INTERNAL REVENUE SERVICE; AND NORMAN E. LORENTZ, \n SENIOR VICE PRESIDENT, CHIEF TECHNOLOGY OFFICER, U.S. POSTAL \n                            SERVICE\n\n    Mr. Dyer. Madam Chairwoman and Representative Turner, I \nappreciate the opportunity to discuss the Social Security \nAdministration's day 1 and business continuity and contingency \nplans for the year 2000 changeover. As a recognized leader in \nY2K readiness, we are confident that our monthly payments to 50 \nmillion people and the earnings records of 145 million workers \nwill not be affected; however, in the case of the unexpected, \nwe are prepared.\n    To begin with, all of our mission-critical systems are \ncertified as year 2000 compliant, along with all of the State \ndisability determination services referred to as DDSs. \nAdditionally, joint testing of payment files and direct deposit \nprocedures have been successfully completed, as is the Federal \nReserve Board testing with financial institutions, including \nSocial Security transactions. Last, as for trading partners, \nTreasury and the Postal Service are also on board to handle \nongoing and incoming exchanges.\n    At this point I would like to review step by step our plans \nfor the last days of 1999 and the first days of 2000. For \nDecember 30th to January 3rd, designated personnel will \ninspect, evaluate and report on virtually every office. Social \nSecurity headquarters will stop receiving on-line transactions \nfrom field offices at 5 p.m. Eastern Standard Time on December \n30th, allowing all officials to collect all of our 1999 \ncomputer transactions.\n    On December 31st, our computer systems will finish updating \nSSA's master files. Just before midnight, the Social Security's \nmain data center in Baltimore will switch to jet fuel \ngenerators until the power company notifies the agency that \neverything is fine.\n    Immediately after midnight, December 31st, 1999, teams will \nbegin assessing our systems' capability to process transactions \nfor the year 2000. Later that day, staff at selected offices \nacross the country will enter data. We will also test the 800 \nnumber. Throughout New Year's Day, a group of programmers will \nrun checks on the computer systems for our 1,400 facilities.\n    Social Security managers will report to their offices, \nchecking all equipment and reporting their findings to regional \noffices, which will then forward the data to the command center \nin Baltimore. Approximately 100 sites will serve as barometer \noffices, including the 55 that do the disability \ndeterminations.\n    Agency technical staff will test software systems by \nconducting a series of typical transactions. The Baltimore \ncommand center will monitor the processing. If problems are \nfound, teams will be dispatched to make the necessary repairs. \nBesides assessing Social Security's infrastructure, our command \ncenter will communicate with several non-SSA sites, such as the \nTreasury command center, to be alerted to any problems that \nbanks may have in posting electronic fund transfers. Moreover, \nwe will advise the White House Information Coordination Center, \nthe media and the Congress of SSA's status. Then on January \n3rd, Social Security will open for business as usual.\n    SSA's day 1 strategy is part of our overall business \ncontinuity and contingency plan. The plan prepares the agency \nto avoid a possible crisis if its automated systems are unable \nto recognize the year 2000. Within this larger plan, we have \nlocal plans for each field office, teleservice centers, \nprocessing centers, hearing offices and the State DDSs. We have \ndeveloped contingencies for benefit payment delivery, building \noperations, human resources and communications.\n    For over a year both Social Security and SSI payments have \nbeen made with year 2000 compliant systems. Furthermore, we \nhave developed a benefit payment delivery plan with the \nTreasury Department and the Federal Reserve. In November 1999, \nnext month, field office employees will receive training as to \nthe actions and procedures they are to follow if such an \nunanticipated problem occurs. SSA also has contingency plans \nthat deal with unforeseen emergencies, such as inclement \nweather, natural disasters, accidents or equipment failure.\n    We want the public to understand that we're prepared for \nthe year 2000 conversion. We want the public to have accurate \ninformation. Misinformation and confusion could generate \noverwhelming workloads and cause disruptions. Therefore we \nappreciate the Congress and others updating the American public \nabout the actions Social Security and other Federal agencies \nhave taken to prepare for the year 2000.\n    For our part we're committed to informing Members of \nCongress if serious problems develop. If a service to any of \nour local offices is interrupted, and contingency plans are \nimplemented, the manager of the affected office will call the \ncongressional office with specific information on how it will \nprovide service to the congressional representative, \ncongressional offices and to the constituents normally served \nby that office.\n    In fact, on September 23rd, we sent a letter to the \nCongress outlining these steps and listed the names and phone \nnumbers of the managers of each local office in each State \nresponsible for calling you.\n    Because of our early planning and testing, Social Security \nfully expects that all of our processes will function properly \nin the new millennium, and that we will continue to provide \nworld-class service to the American people.\n    I'm happy to answer any questions you might have. Thank \nyou.\n    Mrs. Morella. Thank you, Mr. Dyer. I know that Social \nSecurity Administration started in 1989 in their preparation.\n    [The prepared statement of Mr. Dyer follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.032\n    \n    [GRAPHIC] [TIFF OMITTED]61119.033\n    \n    [GRAPHIC] [TIFF OMITTED]61119.034\n    \n    [GRAPHIC] [TIFF OMITTED]61119.035\n    \n    [GRAPHIC] [TIFF OMITTED]61119.036\n    \n    [GRAPHIC] [TIFF OMITTED]61119.037\n    \n    [GRAPHIC] [TIFF OMITTED]61119.038\n    \n    [GRAPHIC] [TIFF OMITTED]61119.039\n    \n    [GRAPHIC] [TIFF OMITTED]61119.040\n    \n    Mrs. Morella. Mr. Langston, Dr. Langston.\n    Mr. Langston. Chairwoman Morella, Mr. Turner, thank you \nvery much for your continued interest in this subject. The \nDepartment of Defense is very proud of the progress that we \nhave made over the past 15 months of this ongoing year 2000 \npreparation effort.\n    I'm joined this morning by Rear Admiral Bob Willard, who \nhas been spearheading this effort in our unified forces and \nservices, and also Mr. Bill Curtis, who has been our full-time \nperson leading and directing the year 2000 event for the past \nperiod of time.\n    We have addressed this issue in four major activities. \nThose activities comprise systems compliance, operational \nevaluation and testing, contingency planning, leadership \npreparation and a transition period which has begun. I will \njust spend a few minutes outlining the activity in these areas \nfor you.\n    In the systems compliance area we are tracking and \nrepairing over 7,500 systems. Over 2,000 of those are mission-\ncritical systems. The rest are non-mission-critical systems. \nAnd in addition, we have 600 installations and 350 domains \namong our main megacenter mainframe computers that we have \nworked to repair. Of those systems we are confident that all of \nthem will be repaired and ready to go for this event, and \ncurrently we are over 98 percent of our mission-critical \nsystems.\n    In the operational evaluation and testing area, this is the \nlargest effort in DOD's history. We have never conducted such \nan integrated and large operational evaluation of our systems. \nWe have done it in two major ways. We have enlisted the \nuniformed services through the support from the chairman of the \nJoint Chiefs of Staff to conduct operational evaluations, which \nare threaded evaluations of systems operations that support our \nprimary military functions. And we've also conducted functional \nevaluations of all of the support operations that foundation \nthe Department; for example, financial systems, logistics \nsystems, and personnel systems.\n    We have also conducted a whole series of service \nintegration tests which are specific to each of our military \nservices and verify that those systems of systems among the \nservices are capable of supporting our needs.\n    In the contingency planning and leadership preparation \narea, the chairman of the Joint Chiefs of Staff has conducted a \nseries of chairman contingency assessments personally led by \nthe chairman and supported by our four-star uniformed \ncommanders. They address mobilization, deployment operations \nand sustainment. And these evaluations were 2 week-long periods \nof removing tens of major systems from each of those areas to \nevaluate the impact of the loss of those systems and the \nsupport of the contingency plans that would be put in place \nshould those systems be removed on military operations.\n    In each of those cases we determined that our contingency \nplans were an important element of what was needed, and that \nwe, in fact, could conduct military operations should we lose \nthose large number of systems.\n    We also conducted business continuity planning in terms of \nboth systems continuity plans and operational continuity plans, \nmeaning that we have a continuity plan for every system, and we \nhave a continuity plan for every operational functional area \nthat is a combination of systems or a larger function, and \ntherefore we have a way to support loss of capability in any \none of these events.\n    We've also enlisted the support of all of our inspector \ngenerals, both the service inspector generals and the DOD \ninspector generals, on all of our assessment agencies to make \nsure that we have prepared good contingency plans and they are \nin good shape for these operations.\n    And finally, in preparation for our leadership, we have \nconducted a series of table top exercises which were literally \nday-long workshops that prepared the senior leaders to explore \nan enormous amount of unknown, what-if types of questions to \ndetermine how we would operate the Department through any kind \nof unknown surprise events.\n    Finally, the fourth area is a transition day 1 operations \nperiod which we did begin in September, the 1st of September, \nand we will operate through the 1st of March or the end of \nMarch of this coming year. A major part of this activity has \nbeen the preparation of a consequence management plan to help \nall of our warfighting commanders and base commanders \nunderstand how they can respond to situations and external \nrequests from the Department for aid and support throughout the \nUnited States or other nations in the world. And in that \nprocess, we have also established a posture-level instruction \nwhich allows across five posture levels each of our commanders \nto understand how we are postured and how they are to respond \nspecifically to those posture levels.\n    For example, in this consequence management activity our \nfirst priority is, as Dr. Hamre, the Deputy Secretary, has \nreiterated several times, is to support national command \nauthority or military operations in any form. Our second \npriority is to support standing operations. Our third priority \nis to support civil authorities and public health and safety. \nAnd our fourth priority is to support civil authorities in \nsupport of economic or national quality of life. These are all \nwell laid out and detailed plans which we continue to refine \nwherever we find the need for such.\n    Finally, I would point out that we have had an ongoing \noperation with foreign nations and our NATO allies with a large \namount of effort concentrated on the Russians and their \ninteraction with us for early warning events and for mitigating \nany nuclear mishaps or missteps related to nuclear weapons. We \nare currently planning to put in place our Center for Year 2000 \nStrategic Stability in Colorado Springs. We have conducted \nsuccessful negotiations with the Russians for them to \nparticipate in this event. They will be arriving in Colorado \nSprings on the 22nd of December and working with us through the \n15th of January for that particular operation.\n    So in conclusion, I would suggest that we have conducted a \nvery extensive activity over this past year. The activity \nactually transformed when Secretary Cohen and Dr. Hamre tasked \nthe uniform commanders and the under secretaries of the \nfunctional support areas to be personally responsible for the \noperations and mission continuity through this period of time. \nI believe that it's fair to say that the Department literally \ndoes contingency planning all the time because of the nature of \nour business. We do continuously report activities on a 24 by 7 \nbasis throughout the normal year, and the year 2000 event for \nus is a significant event that we do not take lightly, but it \ndoes fit directly into our normal operations, and we feel that \nwe will be ready and prepared to support any national security \nsituation throughout this period. Thank you.\n    Mrs. Morella. Thank you, Dr. Langston.\n    [The prepared statement of Mr. Langston follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.041\n    \n    [GRAPHIC] [TIFF OMITTED]61119.042\n    \n    [GRAPHIC] [TIFF OMITTED]61119.043\n    \n    [GRAPHIC] [TIFF OMITTED]61119.044\n    \n    [GRAPHIC] [TIFF OMITTED]61119.045\n    \n    [GRAPHIC] [TIFF OMITTED]61119.046\n    \n    [GRAPHIC] [TIFF OMITTED]61119.047\n    \n    [GRAPHIC] [TIFF OMITTED]61119.048\n    \n    [GRAPHIC] [TIFF OMITTED]61119.049\n    \n    [GRAPHIC] [TIFF OMITTED]61119.050\n    \n    Mrs. Morella. Mr. Gilligan, pleasure to hear from you sir.\n    Mr. Gilligan. Thank you, Madam Chairwoman Morella and \nCongressman Turner. I welcome this opportunity this morning to \ndiscuss the Department of Energy's contingency, business \ncontinuity and zero day plans. As Chief Information Officer for \nthe Department of Energy, I am responsible for the oversight, \ncoordination and facilitation of the Department's ongoing \nefforts to address year 2000 issues.\n    The Department has made great progress since the last time \nwe testified before this subcommittee in June 1998, and I am \npleased to be here to discuss our progress with you. Achieving \n100 percent year 2000 compliance has been one of Secretary \nRichardson's top goals for the Department. When I joined the \nDepartment in October 1998, the Department was the recipient of \na failing grade on its year 2000 progress from this committee, \nand turning around the year 2000 program was my highest \npriority.\n    As you are aware, we were able to rapidly improve our \nprogress to a B grade in early 1999. I am pleased to report to \nyou today that 100 percent of the Department's 420 mission-\ncritical systems are year 2000 compliant and have approved \ncontingency plans, and that the Department is more than 99.8 \npercent complete in remediating over 200,000 non-mission-\ncritical systems, embedded chips, telecommunications systems, \ndata exchanges and work stations.\n    The Department has taken a phased approach similar to other \nlarge government agencies to its year 2000 preparation \nactivities. Phase I of our program focused on remediating the \nDepartment's 420 mission-critical systems and approximately \n200,000 non-mission-critical systems.\n    Phase II focused on implementation of additional risk \nreduction and mitigation measures to help ensure that no \nDepartment mission is compromised due to year 2000 transition, \nand development of business continuity and zero day plans to \nensure the continuation of the Department's core business \nprocesses in the event of a year 2000 related failure.\n    Phase III of our program is now focusing on refining our \nbusiness continuity and zero day plans that we have developed. \nThis will ensure that we have clear processes to deal with \npotential year 2000 induced problems and that we have \nidentified individual roles and responsibilities for \nmonitoring, evaluating and responding to year 2000 related \nevents across the Department.\n    As I mentioned earlier, phase I of our year 2000 program is \nnearly 100 percent complete. During the course of our phase I \nyear 2000 activities, the Department has also focused \nparticular attention on the systems that protect the health and \nsafety of the public, our workers and the environment. As of \nthe 1st of October, all of our more than 540 health and safety-\nrelated systems are either year 2000 compliant or year 2000 \nready, and we will continue to focus close attention on these \nsystems. Furthermore, positive validation of the functionality \nof all operational health and safety systems will be required \nwithin 12 hours of the year 2000 transition to ensure the \ncontinued safety of the public, our workers and the \nenvironment.\n    Phase II of our year 2000 program is almost fully complete \nas well. During phase II we focused on implementation of \nadditional risk reduction and mitigation measures to help \nensure that no departmental mission is compromised due to the \nyear 2000 transition. We have conducted external independent \nverification and validation of the year 2000 remediation \nefforts as well as end-to-end testing for all mission-critical \nsystems and health and safety-related systems with year 2000 \ndate-related issues. I am pleased to report that external IV&V \nand end-to-end testing activities are complete for more than 99 \npercent of these systems.\n    Phase II of our program also focused on developing business \ncontinuity and zero day plans to ensure the continuation of our \ncore business processes in the event that year 2000 failures \noccur. Due to the complexity and diversity of the Department's \nmissions and activities and the recognition that the year 2000 \ntransition poses a unique risk for each site, the Department \nrequired business continuity plans for each of our 42 sites. \nSites have exercised their contingency and continuity plans \nduring phase II of our program. Our first formal readiness \nexercise was conducted on April 9th and resulted in lessons \nlearned and best practices on contingency plans. On September \n8th and 9th, 42 sites participated in our second year 2000 \nexercise. Sites tested failure scenarios and their planned \nresponse to year 2000 related events, rehearsed their zero day \nprocedures and tested the Department's procedures for reporting \nyear 2000 events to our headquarters. Sites reported that the \nexercise was very helpful in evaluating contingency and \nbusiness continuity plans and shared with my office a \nsignificant number of lessons learned.\n    We also sponsored two Department-wide workshops on business \nand continuity planning in May and October to share our year \n2000 lessons learned and best practices.\n    We are now implementing phase III of our program, which \ninvolves refining our business continuity and zero day plans. \nIn our review of site and business continuity plans, we have \nfound that they have addressed many of the elements contained \nin the General Accounting Office's day 1 planning guidance. \nHowever, we recently received comments from the Office of \nManagement and Budget that our headquarters business continuity \nplan had some weaknesses, in particular with respect to lack of \nprioritization of key processes, inadequate discussion of our \ncybersecurity efforts and insufficient detail on our procedures \nand responsibilities during the rollover period.\n    I have reviewed the plan and concur with OMB's assessment. \nFortunately, with the solid foundation of contingency planning \nalready completed, these weaknesses can be corrected quickly. I \nhave directed actions to revise our headquarters business \ncontinuity plan by November 12th and resubmit it to OMB.\n    However, even after November 12th, we will continue to \nfine-tune our plans to reflect final staffing decisions and the \nresults of year 2000 preparation drills within the Department \nand with the President's Information Coordination Center.\n    At the Department's headquarters our zero day procedures \ninclude the coordination of the Department of Energy as well as \nnational and international energy sector year 2000 monitoring \nand reporting activities. We have developed plans with the \nelectricity, oil and natural gas industries to receive reports \nof year 2000 related events as well as to analyze potential \nimpacts of any disruptions, including potential cybersecurity \nincidents.\n    Our Emergency Operations Center at the Forrestal Building \nwill operate as the year 2000 command center for the \ncollection, compilation and analysis and reporting of \ndepartmental site and energy sector year 2000 status \ninformation to the President's Information Coordination Center.\n    Since March 1999, my staff and I have visited more than 30 \ndepartmental sites to assess their progress toward implementing \nOMB and departmental guidance, to assess the compliance of the \nstatus of their systems and to share year 2000 best practices \nand lessons learned. I can say firsthand that all of the \nDepartment's employees are focused on year 2000 and continue to \nwork aggressively that we will have a successful and smooth \ntransition. In my opinion, each site is well-positioned to \nmanage the risk potential of year 2000 related failures. Final \nefforts over the next 63 days will ensure that we will \neffectively handle any year 2000 events regardless of source.\n    Secretary Richardson and I are proud of the Department's \nefforts to ensure that 100 percent of our systems are year 2000 \ncompliant, and we are confident in our planning efforts for the \nyear 2000 transition. Our focus and commitment will continue as \nwe complete our preparation efforts. I look forward to your \nquestions. Thank you.\n    Mrs. Morella. Thank you, Mr. Gilligan.\n    [The prepared statement of Mr. Gilligan follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.051\n    \n    [GRAPHIC] [TIFF OMITTED]61119.052\n    \n    [GRAPHIC] [TIFF OMITTED]61119.053\n    \n    [GRAPHIC] [TIFF OMITTED]61119.054\n    \n    [GRAPHIC] [TIFF OMITTED]61119.055\n    \n    [GRAPHIC] [TIFF OMITTED]61119.056\n    \n    [GRAPHIC] [TIFF OMITTED]61119.057\n    \n    [GRAPHIC] [TIFF OMITTED]61119.058\n    \n    [GRAPHIC] [TIFF OMITTED]61119.059\n    \n    Mrs. Morella. Now pleased to recognize Mr. Cosgrave.\n    Mr. Cosgrave. Thank you, Madam Chairwoman, and thank you, \nRepresentative Turner. I'm very happy to be here today to \ndiscuss the status of the Internal Revenue Service's Y2K \nbusiness continuity and contingency plans and day 1, or as we \nrefer to it, our end game plans. I'm joined to as well by Bob \nAlbicker, my deputy. Mr. Albicker along with myself and our \nCommissioner Mr. Rossotti have all personally made this our No. \n1 priority. I am also joined today by Mr. John Yost, who is our \nfull-time executive managing this program. This is a program \nthat he oversees consisting of approximately 100 people that \nare directly in his program office, plus he directly oversees \nthe thousands of people in the Internal Revenue Service who \nengage in Y2K activities on a daily basis.\n    In order to save time, I'll refer you to our general update \non the overall status of our program which is in my written \ntestimony, and I'll focus just on contingency planning and day \n1 planning.\n    The IRS is taking every step it can to mitigate the risks \nthat are involved with the Y2K challenge. Two ways that the IRS \nis a prepared to address risks are through business continuity \nand contingency plans as well as day 1 plans. With respect to \ncontingency plans, the IRS has developed 40 individual \ncontingency plans that are aligned with the 40 most critical \nbusiness processes that outline the necessary procedures to \nfollow in the event any of our mission-critical tax-processing \nsystems suffers a major failure.\n    We followed the planning format suggested to us last year \nby the General Accounting Office. We've completed testing all \nbut two of those plans and have addressed GAO's suggestions \nfrom a recent review of those plans. These contingency plans \nconcentrate on those areas that have the greatest impact on \ntax-processing activities in addition to areas that could be \nparticularly affected by the Y2K problem. Because of the \nextensive renovation and testing work that we have performed, \nwe do not anticipate a major failure; however, we have \ndeveloped the necessary contingency plans, and we are ready in \nthe event they are needed.\n    These plans address such issues as preserving files and \ndata, how to handle personnel, and procedural issues and \ndelivery of service until computer systems are restored. I must \nemphasize, however, that these plans do not provide replacement \ncomputer systems for our existing computer systems, and instead \nthey rely on alternative manual processes. Because we have \nperformed extensive end-to-end testing, we believe that it is \nhighly unlikely that we will need to invoke such plans; \nnevertheless, we have tested them and are prepared to implement \nthem if necessary.\n    As for day 1 or end game planning, the IRS has devised an \nend game strategy that will guide our activities during the \ncritical rollover weekend of December 31st, 1999, through \nJanuary 2, 2000. The end game strategy builds on our current \ninformation system problem reporting resolution process and \nidentifies specific validation checklists to be used during the \nrollover weekend.\n    The plan also recognizes a unique problem facing the IRS. \nThis problem is a result of the annual startup of the filing \nseason, which this year occurs simultaneous with the millennium \nrollover weekend.\n    To ensure maximum risk reduction, therefore, the IRS is \ntaking the following actions. No. 1, we are backing up and then \nquiescing the systems beginning at 10 p.m. On December 29th, \n1999. This means the systems will be turned on, but will not be \nrunning business applications. On January 1, 2000, the systems \nwill be brought back up to their normal operating status, this \ntime updated with our filing season 2000 programs and validated \nagainst quality control checklists prior to the first day of \nbusiness on January 3rd, 2000.\n    Second, we are ensuring that sites and systems are \noperational before the first business day of the new year by \nconducting a validation check of all systems end facilities at \nover 500 different posts of duty.\n    Third, we are reporting any problems that are encountered \nthroughout the weekend through our existing problem reporting \nchannels. All our organizations will be required to affirm that \nthey have checked critical facilities and systems at their \nsites to our year 2000 command center, which will serve as the \nIRS nerve center during the rollover weekend. Reports will be \nprovided to the Commissioner, myself, Mr. Albicker, et cetera, \non a regular basis as well as to the Department of Treasury \nevery 4 hours during the rollover weekend.\n    Please keep in mind the successful rollover weekend is just \na small part, however, of meeting the Y2K challenge. Problems \nfor us may arise well into the new year impacting the filing \nseason. For example, our computers may generate erroneous \nnotices to taxpayers as late as March or April. However, we \nhave procedures in place to resolve any problems that arise, \nincluding scanning for large erroneous dollar amounts and dates \nspecifying 1900. Additionally, the command center will continue \nto operate through April 15th, 2000, or longer if necessary, \ndepending on the status of the filing season. We will rehearse \nour rollover weekend plan on November 20th, 1999, to prepare \nparticipants for this event and to fine-tune our end game \nstrategy.\n    In conclusion, we're confident the IRS will be capable of \nfulfilling its mission in the year 2000 and beyond. While we \nrecognize that risks still exist, we believe we are taking the \nnecessary steps to address them. Thank you.\n    Mrs. Morella. Thank you, Mr. Cosgrave.\n    [The prepared statement of Mr. Cosgrave follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.060\n    \n    [GRAPHIC] [TIFF OMITTED]61119.061\n    \n    [GRAPHIC] [TIFF OMITTED]61119.062\n    \n    Mrs. Morella. I'm now pleased to recognize Mr. Lorentz of \nthe Postal Service.\n    Mr. Lorentz. Good morning, Chairwoman Morella and \nRepresentative Turner. With me this morning are Nick Barranca, \nwho is the Vice President of Operations Planning, and Rick \nWeirich, who is our Vice President of Information Systems and \nour Chief Information Officer.\n    I'm pleased to report this morning that we have completed \nall the technical work on our mission-critical systems, \nincluding independent verification, testing, and implementation \nof a system freeze.\n    We began testing our mail processing equipment in 1998 and \nextended to other sites last year. In August, at our Merrifield \nnorthern Virginia site, we started a 6-week test of critical \nmail processing equipment. This equipment ran continuously in a \nyear 2000 calendar mode, in a live processing environment, \ntesting all equipment types and all mail types. This facility \nhandles 5 million pieces of mail a day, and we have experienced \nno problems.\n    We have also created plans to protect against potential \ndisruptions of other systems and processes. We respond to \ndisruptions every day. In the last 2 weeks we've dealt with \nHurricane Irene in Florida and the Hector Mines earthquake in \nLos Angeles. Locally, last year's storm in Montgomery County \nleft 48 of 60 Montgomery County delivery units that were \nwithout power, and we delivered mail. I know in my home in \nBethesda, all 3 days that we were without power, I got normal \nmail delivery even though I had to walk outside to read it.\n    Our business continuity plans and contingency plans are \nbuilding on our experience and formalizing our response to \ndisruption, both internal and external. Our continuity plans \ndeal with the external infrastructure. Our internal contingency \ncomponent plans deal with the infrastructure all the way from \ntimekeeping to mail processing. Our plans includes working with \ncustomers, with other Federal agencies, and particularly with \nagencies that deliver benefit payments to the American people.\n    We anticipate that some of the mailers may divert \nelectronic communications to hard copy mail. With that in mind, \nwe're holding the enlarged infrastructure that we normally put \nin place for the holiday season, including staff, \ntransportation, and sorting capability, through January.\n    So what is day 1 going to look like for us? First of all, \nit's going to be business as usual, but prepared for whatever \nmight occur. Robust day 1 plans are developed to preempt any \nkind of problems. Systems are in place to identify, report, \ntrack, resolve any Y2K issues.\n    To communicate internally, with customers, with employees \nand with all stakeholders, we have emergency communication \ncapability. Our network operations center has been converted \ninto an internal ICC. Our national and field operations centers \nwill operate 24 by 7 to assess USPS status and provide resource \nand decision support.\n    Our day 1 activities will also involve onsite participation \nat the President's Council's Information Coordination Center \nand Joint Public Information Center. At a recent meeting of the \nPresident's Council on Year 2000, Chairman John Koskinen \nrecognized us as the early warning beacon. We are the only \norganization that goes everywhere, every day, and we'll be very \nhappy to perform in that role.\n    Our plans have focused on Y2K as a business problem. And we \nhave three very simple goals: To protect our customers by \ndelivering the mail, to protect our employees' safety and pay; \nand to protect our business by collecting the money due and \npaying what we owe.\n    We also have a heightened awareness to security problems. \nWe have engaged reputable contractors with full security \nbackground checks and clearances, and we are providing \ninstructions to the field to protect against any viruses. In a \nforward-looking mode, we're also working with the President's \nCouncil on cyber assurance issues. Protecting our work protects \nAmerica's mail.\n    We believe that the United States Postal Service is ready, \nand I look forward to answering your questions.\n    Mrs. Morella. Thank you, Mr. Lorentz.\n    [The prepared statement of Mr. Lorentz follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.063\n    \n    [GRAPHIC] [TIFF OMITTED]61119.064\n    \n    [GRAPHIC] [TIFF OMITTED]61119.065\n    \n    [GRAPHIC] [TIFF OMITTED]61119.066\n    \n    [GRAPHIC] [TIFF OMITTED]61119.067\n    \n    Mrs. Morella. I won't ask you about whether those ponies \nare ready. But it's interesting, as I scrutinized the panel, \nthat it was planned that we picked those five agencies that--I \ndon't mean to prioritize as the most important, but have the \ngreatest influence or effect on our American economy and our \nNation: Social Security, Department of Defense, Department of \nEnergy, Internal Revenue Service and the Postal Service. And I \nappreciate your being here. I think I'll try to ask each of you \nmaybe one question and then see if it evolves into others.\n    First of all, as I mentioned, Mr. Dyer, I commend you on \nhaving started looking to Y2K and what needed to be done back \nin 1989. We have recognized your leadership in this regard. And \nyet what if the computers fail; what specific plans does Social \nSecurity Administration have to ensure that its millions of \nrecipients receive their Social Security checks? I mean, you \nare very close to the people.\n    Mr. Dyer. We are, of course, concerned, and we are \ncommitted to delivering those checks. The Supplemental Security \nIncome checks go out before the end of the year. They'll be \nissued on Thursday. So they're before we turn over. The regular \nTitle II or Social Security checks, they go out on Monday. We \nhave worked very closely with the Federal Reserve, the \nDepartment of Treasury and the Postal Service to assure that we \ncan get the direct deposit or the checks that go through mail \nthere on time. We're positioning the checks and the tapes in \nadvance. We worked through and tested it from beginning to end.\n    So we're very confident that the payments are going to go. \nIf, however, some areas, checks do not reach it, we have fall-\nback plans. If it's with a financial institution with a direct \ndeposit, where the bank fails to be able to push through the \ndirect deposit, we would find another bank that could do the \ndirect deposit, and if not, we would work out how to get a \npaper check to the individual.\n    If it's in terms of the paper checks, we're very confident \nbecause we've worked out contingency plans with the Postal \nService, and, as you know, in hurricanes and other disasters, \nwe've always been able with the Postal Service to be right \nthere onsite and get the checks to the people.\n    Mrs. Morella. So we can tell the viewers, listeners, our \nconstituents, do not worry, the check is in the mail or you \nwill get the check.\n    Mr. Dyer. You will get your check, or you will get your \ndirect deposit in your bank.\n    Mrs. Morella. Exactly. And we will be continuing to watch \nto make sure that that you can continue that way, and feel \nconfident that you will.\n    With regard to, Dr. Langston, the Department of Defense, it \nreally is--you're really the largest Federal entity in terms of \npersonnel and Y2K mission-critical systems. I think you have \nlike 37 percent of all the mission-critical systems are within \nthe Department of Defense. Consequently your mission-critical \ncontingency plans or your contingency plans for all of your \nmissions have got to be very detailed. I wonder how many \npersonnel that you're planning to have ready on December 31st \nto implement the day 1 plan? And do you have any idea what the \ncost might be to implement your day 1 plan? Have you estimated?\n    Mr. Langston. I thought about both of those questions when \nyou asked them earlier. In terms of our contingency planning \npersonnel operations, as I mentioned earlier, we are, of \ncourse, on duty 24 hours a day, 7 days a week, around the \nworld. That operation is actually just being augmented by folks \nthat support the year 2000 systems. So in other words, we have \ncompiled detailed lists of technical experts or operational \nexperts that support any of the contingency plans; those names, \ntelephone numbers, all the contact points have been \nestablished. We are establishing augmentation cells for the \nyear 2000 to support any of our normal watch stations or \ncommand centers, if you will, in major command areas like our \nunified commanders, and like our Pentagon command center, and \nfor the service command centers as well as the Joint Chiefs.\n    In terms of my--I do not have an actual number for you. My \nestimate is that we're operating--we will be operating 5 to 10 \npercent more personnel in a duty--nonduty status than we \nnormally operate. In terms of how many--how much money we have \nspent to support contingency planning, we, of course, continue \nto report to OMB the expenditures for Y2K. Our most recent \nreport, I believe, specified that we will spend by the time \nwe're through with this transition phase about $3.6 billion on \nthe year 2000. My estimate, although I do not have this broken \nout exactly in the reports, is that approximately 25 percent of \nour effort has been toward consequence management, contingency \nplanning or preparation other than the remediation and testing \nevents that we have conducted.\n    Mrs. Morella. Do you think that money, that you could find \nthat within your budget?\n    Mr. Langston. Could we have found that money?\n    Mrs. Morella. Have you thought about finding that money \nwithin the budget that's already been allocated?\n    Mr. Langston. Well, of that $3.6 billion, all of it was DOD \nmoney with the exception of the $1.1 billion augmentation \nbudget that we were provided. We have been committed all along \nto doing whatever we had to do to find the money to support \nthis. This has been Dr. Hamre and Secretary Cohen's No. 1 \npriority for the Department other than national security.\n    Mrs. Morella. So your financial planning has been done \nsatisfactorily up to this point.\n    Mr. Langston. Yes, ma'am.\n    Mrs. Morella. All right. I'm interested in how we connect \nwith Russia and what we are doing to help Russia. I know you've \ngot the command station that you mentioned in Colorado and in \nthe Denver area. When will that U.S.-Russia strategic command \nbe ready?\n    Mr. Langston. It's actually ready now. And as I mentioned, \nwe will have Russian people arriving on the 22nd of December \nand staying in this operational sense through the 15th. We have \nbeen conducting a series of meetings with Russia, both in \nRussia and in the United States. The most recent meeting was on \nthe 18th through the 21st of October in Russia. And we will \ncontinue to interact with them as much as possible to do \neverything we can to prepare for this event.\n    Mrs. Morella. Have they been cooperating?\n    Mr. Langston. Yes, ma'am. They have been very cooperative \nwith the exception of the period of time through the Kosovo \noperations when we were, for political reasons, stopped for \nthis activity.\n    Mrs. Morella. Do you have any interface with the other--as \nthey call them, the NIS, the newly emerging States? That would \nbe like Georgia, Armenia, Azerbaijan.\n    Mr. Langston. We have not had extra activity associated \nwith those folks. We have had a large host nation support \ninteraction ongoing. We cooperate and work with the State \nDepartment on that, and we have also been working with all of \nour NATO allies in support of their preparations for these \nevents. And our local base commanders, wherever they reside in \nforeign countries, are working with those local organizations \nto ensure the support or verify as much as possible how much \nsupport we will get through this period of time. That has been \npart of our host Nation support activity.\n    Mrs. Morella. You have a tremendous task, and I commend you \nand want you to know that we really want to help whenever we \ncan and stay with it.\n    With regard to Mr. Gilligan and Energy, I'm curious. This \nafternoon I'm going to be going to the Nuclear Regulatory \nCommission for the swearing in of the new Director. And I'm \njust wondering how do you, Department of Energy, coordinate \nwith the Nuclear Regulatory Commission to ensure that our \nnuclear power plants will be ready for the year 2000? I know \nthat it's not within your jurisdiction, NRC specifically, but \nyour interconnection?\n    Mr. Gilligan. The Nuclear Regulatory Commission, as you \nknow, has the regulatory legal authority over the domestic \nnuclear power plants, and so they have been issuing guidance, \nand that guidance has been implemented within the plants. We \nhave been monitoring those activities through two means: One, \nwe have a relationship with the North American Electric \nReliability Council, NERC, which has been assigned domestically \nfor electricity and to coordinate the Y2K activities.\n    As the nuclear plants are part of our electricity \ngenerators, they are being monitored through the reporting \nactivities, and those activities are then reported to us.\n    Second, we have established a relationship, we actually \nhave an ongoing relationship, with the Nuclear Regulatory \nCommission. We have participation in their emergency operations \nfacilities, and we are continuing to track their progress, and \nwe expect that one of the key partnerships that we will have \nduring the rollover will be with their command centers, as well \nas, we will have Nuclear Regulatory Commission participation at \nour energy sector desk in the Information Coordination Center.\n    Mrs. Morella. I think you also said in your statement that \nyou have found that you are all 100 percent compliant?\n    Mr. Gilligan. For our mission-critical and health and \nsafety systems, that's correct.\n    Mrs. Morella. That's great. How about your liaison with \ncontractors, would you like to comment on that?\n    Mr. Gilligan. Sure. As you may know, the Department of \nEnergy is structured where we have very heavy reliance on \ncontractors. So of our roughly 120,000 employees, about 110,000 \nare contractors. And so we have an in-house, if you will, body \nof contractors, and it has been those contractors that we rely \non day in and day out who have done the vast majority of our \nY2K remediation activities. We have brought in external \nindependent verification and validation contractors to help \noversee the process to ensure that we were getting objectivity, \nand that's worked very well. We only have isolated incidents \nwhere we have brought in new contractors for the purpose of \ndoing Y2K remediation at our sites.\n    Mrs. Morella. So you feel the selection of your validation \ncrew is adequate for total assurance that the contractors are \nfollowing through?\n    Mr. Gilligan. We believe that this was critical to our \nprocess, because of the potential danger of a contractor who \ndoes this work day in and day out potentially missing \nsomething, that we require the external and independent \nverification and validation. We defined a process for \nconducting that. We defined a reporting process that went \nthrough line management at each of our sites for each of our \nmission-critical and health and safety systems. So this became \na very important part of our confidence building through the \nline management chain that our remediation activities had been \ndone properly. And I'm pleased to report that we found very few \ndiscrepancies or items of concern in our independent \nverification and validation.\n    Mrs. Morella. I'm glad to hear that.\n    Mr. Turner's been very kind to let me continue to ask each \nof you a question, then I'll turn to him.\n    And, Mr. Cosgrave, you knew--you knew we were coming to you \nwith regard to what I had posed to the first panel and that \nletter that was written to Bill Archer on October 15th that you \nreported that the quality of your computer systems' inventory \ncurrently poses a high risk to the Y2K effort. You addressed it \na little bit in your statement, your oral statement. I just \nwondered if you would give us an update of the status to \ncomplete the inventory process. I wonder when it will be \ncompleted, why did it take so long. I mean, were there some \nglitches here that if could you go back you would have changed? \nAnd how would you adequately plan contingencies in the event \nof--given the fact that you're still determining the systems \nthat you now have, how would you adequately plan contingencies \nin the event of a Y2K problem or failure?\n    Mr. Cosgrave. Thank you for asking the question. Let me try \nto answer the questions. Let me try to hit them all. I need to \nfirst explain some background on this.\n    Tracking inventory in a large enterprise such as the \nInternal Revenue Service is a major problem for any large \nenterprise. It's significantly more difficult for us because of \nthe highly decentralized nature of the way the Internal Revenue \nService has historically operated and, frankly, because of the \nlevel of detail at which we are now trying to track this data.\n    Based on my 25 years of working in private industry, I \ndon't think the problem is different for anybody else on the \npanel or anybody else in private industry. It is just made more \ndifficult at the IRS by the highly decentralized nature of our \noperations. To give you an example of how complicated this is, \nwe have recognized this problem as a material weakness in the \nInternal Revenue Service dating back to 1984. So it has been \nrecognized as a 15-year-old problem we still haven't been able \nto solve.\n    Specifically for Y2K purposes we are tracking about 800,000 \nitems in our inventory, 800,000. To give you an example, we \nwould track every PC, every piece of equipment, every piece of \nsoftware that is on that equipment, and for Y2K purposes we \nhave to track every release version of every piece of software \nthat's on every computer. So it gets extremely detailed when \nyou're up to 800,000 individual items.\n    However, maybe this is a good example of where Y2K has \nfinally given us the push to solve a long-standing problem. In \nfact, prior to starting our Y2K program, we were probably in \nmany cases at best 50 percent accurate in our inventories. I \ncan report to you today that based on some of our most recent \ntests, we're now over the 90 percent level. However, there \nstill are issues.\n    We have a three-step process in place right now to bring \nthis together and make sure it's in place not only for January \n1st, but also for October 1st, which was a critical date for \nestablishing a year-end evaluation for the fiscal year for \nfinancial purposes. So we're working both those problems \nsimultaneously for the financial records as well as for the Y2K \ninventory.\n    We are addressing the problem now with three specific \nactions. We're doing on-the-ground, wall-to-wall inventories in \nall our computing centers, all our service centers and 11 of \nour 33 districts. We, furthermore, are doing independent \nverification and validation of those results here at the \nnational office for all our largest computers, our tier 1, tier \n2 computers, and doing detailed comparisons between what's \nrecorded from the inventory and what we have actually on the \nfloor.\n    And then third, we have started the independent audit and \nreadiness verification, which is also going out to all our \ncomputer centers, all our service centers, and, again, 13 of \nthe 33 districts, different ones this time, to essentially make \nsure that we, in fact, can validate, get as close as 100 \npercent.\n    What's different now most importantly is that the CIO is \nnow 100 percent responsible for the inventory. That was not the \ncase prior to my arrival last July. The inventory \nresponsibility was a decentralized responsibility, and as a \nresult we were not able to adequately get our hands around \nthis. Longer term the solution to this problem will clearly be \nautomatic tracking, which we're in the process of implementing \nso that, in fact, we can automatically record everything that's \non our network.\n    Mrs. Morella. Could--I know the people who are listening \nand watching would like to know could IRS computer problems \nresult in more citizens being audited?\n    Mr. Cosgrave. I'm not sure that that would be a concern. I \nthink from the perspective of the individual person looking at \nthis testimony, I would think their major concern would be \nprobably around whether they're going to get their refund on \ntime. So we're implementing special processes, much like the \nones that Social Security described, to make sure that refund \nchecks are processed on a timely basis. Of course, our process \nfor sending out refunds would start toward the end of January \nrather than the beginning of January. So we have a little more \nample time to make sure that everything is working properly. \nBut we go through exactly the same processes that SSA described \nin working with FMS and the Postal Office to make sure that \nthose checks get distributed. So I think probably that is the \nthing that your viewers would be most concerned about.\n    Mrs. Morella. Is there anything that the public should do \nto protect themselves against possible IRS computer failure?\n    Mr. Cosgrave. What the public needs to do is what the tax \npreparers would recommend they do every year, and that is keep \ntax records at home. I mean, they will need tax records if, in \nfact, they are summoned in for an examination, and therefore \nthey need to keep good, accurate records like they would any \nother year.\n    Mrs. Morella. Thank you. I'm going to ask unanimous consent \nthat the letter from IRS sent to Chairman Archer be included in \nthe record. Without objection, it will be so ordered. Thank \nyou.\n    [The information referred to follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.068\n    \n    [GRAPHIC] [TIFF OMITTED]61119.069\n    \n    [GRAPHIC] [TIFF OMITTED]61119.070\n    \n    [GRAPHIC] [TIFF OMITTED]61119.071\n    \n    Mrs. Morella. Now for our Postal Service. At the hearing we \nhad back in February of this year, Mr. Lorentz, you stated that \nthe Postal Service's contingency plan was itself. And you kind \nof implied that today, too; that is, there is no other \norganization that can deliver mail in the event of unforeseen \ncomputer failures. And you say that mail will be delivered. I \nwonder who can deliver the mail in the event of unforeseen \ncomputer problems? And what are your main contingency plan \nrisks, and what have you done then to mitigate your risks?\n    Mr. Lorentz. The answer to the first issue is that for our \nown computer systems, we have focused on the severe and \ncritical systems. For severe and critical systems, 33 percent \nof the functionality has already been tested with the fiscal \nyear turn. We have experienced no operational failures at all. \nWe've had 17 anomalies where the wrong data appeared on a \nscreen or perhaps printed on a piece of paper, but no \noperational failures whatsoever in the system so far. And as I \nmentioned previously, we have tested our mail processing \nequipment in many locations under full volume, so we're very \nconfident that those systems have been mitigated. We are the \nultimate contingency.\n    So how will the mail be delivered? It wasn't too many years \nago that our sortation and delivery was done manually with \nlittle mechanization. We have not forgotten those tool sets. I \nthink the major risk that we have that we've also addressed in \nour continuity plans is loss of major infrastructure \ncapabilities, power, telecommunications, et cetera. We have \ndetailed plans in place to mitigate that. We do that as a \nnormal manner of course. We just did it in Florida. We just did \nit in North Carolina. We had to do it in L.A. We're used to \nworking with without those capabilities. So we can do that just \nlike anyone else. If it was a more of a general failure, that \nwould be the highest risk.\n    Mrs. Morella. And you would probably take care of that by \nmanually making sure the mail is--.\n    Mr. Lorentz. Absolutely.\n    Mrs. Morella [continuing]. Delivered. I thank you.\n    I now would like to turn to the distinguished ranking \nmember, Mr. Turner, for his turn at any questioning or \nstatements.\n    Mr. Turner. Thank you, Madam Chairman.\n    You know, I've often wondered when we go through January \n1st if we go through it with relatively minor disruption, if we \nwant to look back and wonder if we avoided one of the greatest \nthreats to our domestic tranquility and threats to national \nsecurity that we've ever experienced in this country, or \nwhether we'll look back and think, well, we dealt with one of \nthe most overstated, overstudied, overdiscussed problems that \ncost us literally billions of dollars in both the public and \nprivate sector.\n    I thought it would be helpful in terms of trying to allow \nthe general public to understand what all of this study, all \nthese contingency plans, all these validation efforts have been \nabout if I could ask each of you to give us an example of one \nspecific problem that you did discover, that you did fix, and \nif you haven't fixed it, what would have been the significant \nconsequence of the failure to have discovered it and fixed it?\n    And I'll give you a little time to think about that. I have \na few other questions I want to address. I'll leave that for my \nlast question for each of you, because I think if we could come \nup with a good example from each of you, it might help the \npublic understand what all this effort and expenditure was \nreally all about. You know, it's all well and good to hear \nwe're checking our systems, we validate, we know there's not \ngoing to be a problem, but I think it's also helpful to know \nwhat problem was really found and fixed.\n    One long-term consequence, I think, of the effort that \nyou've made that will have lasting value is in terms of our \nnational security. We all know that we talk a lot about the \nthreat of nuclear warfare, the threat of chemical warfare, the \nthreat of biological warfare. But we also know that at the end \nof this century we also face the threat of cyber warfare. And I \nwant to address this question to Dr. Langston because I think \nthat it is important for us, having gone through the effort to \naddress the Y2K problem, that once we hopefully successfully \nmove through it, that we not take all of our contingency plans \nand throw them in the wastebasket. But recognize that they do \nperhaps have some long-term benefit in terms of being prepared \nfor the threat of cyber warfare.\n    Dr. Langston, if you would, just address the implications \nof what you have done in the Department of Defense which would \nobviously be directly related to the issue I raised as well as \nwhat you might see as the benefits of the efforts that have \nbeen made all across the public and private sector with regard \nto preparation for cyber warfare.\n    Mr. Langston. Thank you sir for that question. We currently \noperate, as I mentioned, with year 2000 as our highest priority \nin the Department short of military operations, and we also \noperate with cyber threat as our second highest priority for \neverything that relates to the movement of information within \nthe Department. We have in this past year stood up what we call \na Joint Task Force for Computer Network Defense, which has now \nbeen moved under the Unified Commander for CINC Space, \nsignifying the importance of this operation. In other words, we \nbelieve that it is an operational four-star commander's \nimportance level, level of importance for supporting and \nmonitoring and preparing for computer network defense. That's \nan indication that our operational forces have realized that \nthese computer networks are critical and integral part of all \nour war-fighting operations, and they include, of course, \nsupport operations, logistics, finance, personnel, as well as \ndirect military mission operations.\n    So therefore, we plan to continue on through the \npreparation and development of cyber warfare defensive \nmeasures. We posture and are working right now on what we call \nan information assurance architecture, which is literally a \ndefense in-depth architecture that will allow us to specify for \nall of our operational forces and systems how we want them to \nuse the technologies of today and the technologies that emerge \nfor information assurance.\n    In addition, we have already put policy in place--I'm \ntalking about policy signed out by Dr. Hamre, the Deputy \nSecretary, to install key infrastructure. These are encrypted \ncertificates that will allow us to understand who it is that is \nat the end of every computer transaction, both internal to our \nDepartment and external to the Department, and to put these in \nplace in the next 3 years. And in addition, we have taken a \nstep to move toward using the new smart card technology, which \nare literally credit cards with a chip in them, as a part of \nthis security network defense operation to allow these smart \ncard chips to become hardware stanchions of these encrypted \ncertificates to represent who we are.\n    So we take it all very seriously. We believe that the \npressure that has been applied through both the executive \nbranch and the congressional legislative branch for critical \ninfrastructure protection is vitally important to all of us. \nAnd we work very hard with judicial department and State \nDepartment and others to help put in place these efforts and \nmake them a major part of what we do.\n    Mr. Turner. It seems obvious to me that our technological \nsuperiority which has caused us to be the world's greatest \nmilitary force perhaps is also our greatest vulnerability.\n    What about my suggestion that the other agencies of \ngovernment and perhaps the private sector are not simply \nputting all of their plans in the wastebasket, but remember \nthat there is an ongoing national security threat to all of us \nthat perhaps those plans would be useful in preparing for?\n    Mr. Langston. Thank you for reminding me of that question. \nI meant to suggest as we went through our--what I call our \nchairman's contingency assessment where we took major systems \noff line from our operational forces, in every one of those \nevents, the unified commanders came back and said to the \nchairman, this was a very useful exercise, it was money and \nenergy well spent. It allowed us to update our contingency \nplans, and it reminded us that we need to refine and continue \nto exercise those plans.\n    We, of course, in the military have always had contingency \nplans and always had back-up plans for everything we do. But \nlike any organization, it's easy to not exercise them as often \nas you might need to given the press of ongoing business. So we \nplan to continue to use the contingency plans as an operation. \nAnd, in fact, working with the GAO and recent legislation in \nthe appropriations bill, we plan to follow on with our year \n2000 data base to support the tracking of these information \nsystems and the evolution of this entire information assurance \narchitecture that I suggested.\n    Mr. Turner. Let me ask the question that I posed at the \noutset, and starting with Mr. Dyer, could you cite for us one \nproblem that was discovered that you fixed and share with us \nthe consequence that may have resulted had you failed to fix \nit? When we started out this effort many months, years ago, we \nall heard there wasn't enough computer programmers available to \nfix all these problems. Some months ago we asked at one hearing \nwhether or not that was still the case, and we learned that \nreally wasn't a real problem. So, obviously we've been able to \ncope thus far with the available personnel. I still assume that \nit took many man-hours of computer programmers to check out \nthese systems, and in the process they found some things that \nthey fixed. If you would, Mr. Dyer, give us a good example from \nyour agency of something you found and fixed.\n    Mr. Dyer. As Madam Chairwoman said, we started back in \n1989, so we've had a long time to do it. As we've been updating \nsoftware over the years, we've been continuously doing it. I'll \ngive you the major problems that would have happened. If the \nsoftware was not adjusted, when the software ran, the computers \nwould get the dates and everything confused; which would have \nmeant that the calculations for what our beneficiaries would \nhave been paid for the month would be all wrong and, on top of \nthat, would probably stop the messages from going through to \nactually print out the checks and send the direct deposits.\n    In terms of very small kinds of things, as we went through \ntelecommunications systems and looked at them, what would have \nhappened is that certain data that we would have been \ntransmitting over satellites to move various things around the \ncountry would just not have happened.\n    Mr. Turner. Dr. Langston, without breaching national \nsecurity or revealing anything that might be top secret, could \nyou give us an example of something that was found and fixed \nand the consequence of failure to do so?\n    Mr. Langston. Yes, sir. An indication of how critical this \nhas become for us is that many people in the early days of the \nyear 2000 problem dismissed it as not a very significant or \nreal problem. And as each of our folks, including our very \nsenior managers and leaders, have gotten involved with it, they \nhave all been very--become very serious about the importance of \nit as they've discovered what kinds of examples have come \nforward.\n    Let me just give you a couple of examples. In our finance \nand accounting systems, we have found that we would not have \nbeen able to move money between ourselves and our vendors our \nthrough the financial system, and we would not have been able \nto make payment to our retirees without fixing those systems.\n    In our medical equipment systems, we have found many \nexamples of where we would have not been able to support the \nmedical records or even the medical processes that distributed \nmedical activity to the medical recipients. In a very vivid \nexample, our communications switches, which are commercial \nswitches, but which we purchase over long periods of time, \noften don't keep them up to date with the latest changes in the \ncommercial switch market. We found over 120 switches that would \nhave gone down during the Y2K period of time and literally \ntaken down all of our telephones within the Department and \ntherefore rendered us virtually without communications to \nsupport anything we've done.\n    And even in the weapons systems area, we have weapons \nplanning systems that support the distribution of plans out to \nour weapons platforms, and there were Y2K problems in those \nsystems that would have created a need for contingency backups.\n    Mr. Turner. Thank you. Mr. Gilligan.\n    Mr. Gilligan. As you know, the Department of Energy has a \nrange of missions, from nuclear missions to academic oriented \nresearch. The example that I would like to discuss is at one of \nour nuclear waste processing plants at our Savannah River site \nin Aiken, SC. We have a series of systems that are \ninterconnected that provide for processing and treatment of \nnuclear waste, high level nuclear waste products, \ncontainerizing them and shipping them. In the course of the \nanalysis and the inventorying of those systems, we found that \nmany of the embedded processor chips that were involved with \nthe process control of moving the waste from one station to \nanother, as well as those computers that monitored the exhaust \nstacks for possible increased levels of radiation, had Y2K \nrelated problems.\n    Those were, in many cases, easily fixed. In some cases, \nthey redesigned new special-purpose computers in order to be \nable to fix the problems. And so--and those systems then were \ninstalled. They had to be installed during downtimes of the \nprocess so they would not disrupt operations. Now, many would \nfear that a possible Y2K failure would result in a nuclear \naccident.\n    That is not, in fact, the case. In all of those \ncircumstances, what would have happened if we had not repaired \nthose systems is that the processor would have failed, would \nhave triggered automatic shut-down procedures. But the \nautomatic shut-down procedures, while they protect against any \nnuclear release of contamination, they do cost money because we \nwould have an approximately $3 million a day impact in cost of \nlost opportunity if, in fact, those systems had not been \nprepared. That is an example where obviously there is high \nvisibility because of the nuclear processing. We felt \nconfident, even though these problems existed, they would not \nhave caused a health and safety consequence; but they would \nhave had a fairly significant financial impact if we had not \nrepaired them prior to January 1st.\n    Mr. Turner. Thank you. Mr. Cosgrave.\n    Mr. Cosgrave. Mr. Turner, if I may, I would like to give \nyou three quick examples, all stemming, frankly, from the \nneglect that allowed us to have an antiquated infrastructure \nthat hadn't been addressed in a long time.\n    The first example, probably the most important, is we have \nreplaced the entire submissions and remittent processing system \nthat operates in our service centers for processing the tax \nreturns when they come in. The system was, in many cases, 15- \nand 20-year-old hardware that, frankly, we couldn't even get \nreplacement parts that were Y2K compliant to meet the needs. So \nwe had no choice but to replace that entire system with modern \ntechnology. So we literally would not have been able to process \ntax returns.\n    The second example is with respect to security. We have \nbeen running a fairly old security environment that was \ndecentralized like many things at the IRS, and it was very \nclear that we needed to bring that up to speed and up to date. \nSo we have made a major improvement in our security environment \nas a result of the Y2K effort.\n    The third example, and probably the most dramatic to people \nlistening in, is that when our revenue agents went out and \nvisited taxpayers, they were often embarrassed because they \nwere carrying with them either a PC that was of 286- or 386-\ntype vintage. If you don't follow the Intel market, they were \nissued back in the early 1980's. Quite honestly, that is not \nadequate given what they are facing when they deal with the \ntaxpayers today who quite often have much more sophisticated \ntechnology. So we have replaced all of those PCs with modern \nPentium computers and now at least are on an even par with the \ntaxpayers.\n    Mr. Turner. Thank you. Dr. Lorentz.\n    Mr. Lorentz. I guess I would answer the question two ways. \nThe two specific examples I would give are: First of all, we \nidentified an accounts payable problem, one that if it hadn't \nbeen identified, if the process hadn't pointed it out to us, \nwould have resulted in late or no payments at all going to some \nof our suppliers.\n    The second example is our air dispatch system. In that \ncase, we have an automated system that literally takes the mail \nonce it has been sorted and prepared and dispatches it to \naircraft. A substantial portion of the mail is airborne now. So \nit would have given us an inability to do that in a mechanized \nway.\n    Those were two significant areas that were very \nconstructive. The second answer to the question is that this \nhas caused us to put process discipline in our business and we \nnow have business owners of these issues, not just technology \nowners. So we literally have--we are going to leverage this in \nhow we look at security.\n    Security is not a chief technology officer issue. It is a \nbusiness issue. To give you an example in a more pedestrian \nway, we had the best close of our financial books that we have \nhad in recent memory because we had significant configuration \nmanagement in place. So the discipline that has been caused by \ngoing through Y2K preparation, as well as the retirement of \nunneeded systems, has given us a positive outcome.\n    Mr. Turner. Thank you. I must say that listening to all of \nyou, the direct and secondary benefits of the efforts seem to \nbe very apparent. Thank you, Mr. Chairman.\n    Mrs. Morella. Thank you, Mr. Turner. Following up on the \nquestions that you asked, I thought that was excellent, did any \nof you have any trouble with 9-9-99? Can we just very quickly, \ndid you have any trouble?\n    Mr. Langston. No, ma'am; but I would point out that in our \ntesting efforts, we have found as many problems in the leap \nyear rollover period which will occur the end of February as we \nhave in the Y2K period, the rollover date.\n    Mrs. Morella. So you are preparing for that. I think that \nwe all should--.\n    Mr. Langston. That is why our transition period includes \nthat.\n    Mrs. Morella. Mr. Gilligan.\n    Mr. Gilligan. We had no problems on the 9th of September. \nWe did, in fact though, have one system at the beginning of our \nfiscal year of October 1st that experienced a failure. This was \na failure of a subportion of our procurement data tracking \nsystem. It was fixed within about a half hour, and the \ntransactions were rerun and the permanent fix was done within \nabout 24 hours. But it did give us clear indication that we \nneed to have processes in place to be able to respond.\n    Mrs. Morella. OK. Mr. Cosgrave.\n    Mr. Cosgrave. Our experience was very similar to what the \nDepartment of Defense is experiencing. I would reiterate the \nleap-year problem because we are focused on that as part of our \ntesting as well.\n    Mr. Lorentz. Not to our knowledge we didn't have any 9-9-99 \nproblems. We did have a couple of cases where we printed the \nwrong dates, but it didn't do anything to the internal code.\n    Mrs. Morella. Several of you have already commented on the \ninformation computer security problem. Not only is it enormous \nwith DOD, but obviously very important with all of you. I just \nwondered if you are taking precautions. Now, I heard what you \nsaid that is being done, Dr. Lorentz. You talked a little bit \nabout it, Mr. Cosgrave. I wondered if the others might want to \ncomment. Are you taking any precautions for this day 1 plan in \nterms of the information technology security?\n    Mr. Dyer. We are quite concerned about security. We are \ngoing to be doing extra monitoring of all of our systems. We \nhave a special team in place to concentrate totally on all of \nthe security issues.\n    Mrs. Morella. Mr. Gilligan.\n    Mr. Gilligan. We have an organization called the Computer \nIncident Advisory Capability that is co-located at Lawrence \nLivermore Laboratory. They are our cyber-security investigation \nand response cell. They will be active as will their points of \ncontact at all of our sites. We have established reporting \nprocedures. They will be part of our emergency operations \ncenter contingent active through this rollover period.\n    Mr. Lorentz. We have put in place all of the industry \nstandard firewalls and virus protection on our case-hardened \nside. We have given specific special instructions to the field \non what to look for in the intervention of viruses. The \nadditional area that we are looking at both as far as the day 1 \nas well as the future, is more e-commerce exposure.\n    We have, so far, issued 150,000 digital certificates for \nthe online stamp capability. We see potential exposure \ncertainly in e-commerce along with everybody else. We are \nespecially monitoring those aspects of the business. We are \nalso participating in the cyber assurance effort as part of the \nY2K council in partnership with other agencies.\n    Mrs. Morella. Thank you. I think you have all done a great \njob of sharing the experiences looking back, looking ahead, but \nmore needs to be done of your agencies. I want to announce \nthat--do you have any other questions or comments?\n    Mr. Turner. No.\n    Mrs. Morella. It has been an excellent hearing. Please note \nthat all of the members of the subcommittee again will get the \nfull testimony. We would like your permission to be able to \nsubmit any further questioning to you from ourselves and other \nmembers of the subcommittee.\n    I am going to ask unanimous consent that Chairman Horn's \nopening statement be included in the record. If no objection, \nit will be so ordered.\n    [The prepared statement of Hon. Stephen Horn follows:]\n\n    [GRAPHIC] [TIFF OMITTED]61119.072\n    \n    [GRAPHIC] [TIFF OMITTED]61119.073\n    \n    Mrs. Morella. The next hearing of the House Y2K working \ngroup is going to be held next Thursday, November 4. It will be \nat 2 o'clock in the afternoon, room 2318 of this building. The \nhearing is going to be entitled ``Y2K Myths and Realties; What \nEvery American Needs to Know in the Remaining 50 days.'' it is \nnow count down 63 today, but it will be 50 at that time. The \nhearing is designated to be the culmination of our over 3\\1/2\\ \nyears and over 100 congressional hearings on the Y2K computer \nglitch.\n    I just want to thank the following people who have been \ninvolved in some way in putting this hearing together: The \nmajority staff of the Government Reform Committee: J. Russell \nGeorge, staff director and chief counsel; Matt Ryan, senior \npolicy advisor; Bonnie Heald, the communications director and \nprofessional staff member; Chip Ahlswede, clerk; Rob Singer \nstaff assistant; P.J. Caceres, an intern; Deborah Oppenheim, an \nintern; the Technology Subcommittee: Jeff Grove, staff \ndirector; Ben Wu, professional staff member; Joe Sullivan, \nstaff assistant; minority staff of Government Reform: Trey \nHenderson, minority counsel; Jean Gosa, staff assistant; of the \nTechnology Subcommittee minority staff: Michael Quear, \nprofessional staff assistant; Marty Ralston, staff assistant; \nthe court reporters: Cindy Sebo and Randy Sandefer who has come \non the scene here, too.\n    And so I thank all of them. I want to thank Congressman \nTurner for being with us for the entire hearing. I want very \nmuch to thank both of our panels. We appreciate it very much. \nThank you very much.\n    The subcommittee is now adjourned.\n    [Whereupon, at 12:12 p.m., the subcommittee was adjourned.]\n\n                                   - \n\x1a\n</pre></body></html>\n"