Risky Business

After getting wrapped around the axle yesterday on the tried and true budget method of “Salami Slicing” I never got around to opining on risk, so here goes!  During much of my early career, risk didn’t enter into my decision making process, at least not consciously.  Of course, flying from aircraft carriers is all about risk and how to manage it, but risk management is already baked in.  The “powers that be” know that if you have a certain number of practice landings, maintain technical currency in your aircraft and fly regularly, the risk of an accident is minimized.  Over the years I’ve seen the Navy’s thinking about risk mature.  The time was, when one went on deployment, you could expect to lose a couple of airplanes and several aviators in a typical 6-7 month cruise.  Because of a focus on managing risk, the loss of a single aircraft or crew member is a rarity.  (keep that thought in mind).  On a personal level,  as one moves up the leadership ladder, the onus for managing risk shifts from the institution to the individual leader.  My opinion is that one of the reasons people become effective leaders is that they concentrate on minimizing risk to the people and equipment under their command, not on minimizing personal risk to their themselves (careers). Of course, there’s always a healthy tension between accomplishing the mission and minimizing the risks associated with it.  Safety is paramount!!! But if safety were really paramount, we would never fly, because it’s a dangerous business!  That’s where leaders earn their pay—making the trade off between risk and reward.  In the Navy, it’s interesting to see how the various warfare communities manage risks.  In the Surface Navy,  the decisions on risk rest principally with the Commanding Officer.  The CO does this by being intimately involved in planning and executing the training, day-to-day operations and mission execution of the ship.  The CO has the Officer of the Deck and his Tactical Action Officer to do the minute-by-minute execution, but the CO is always available for problems as they arrive.  An aviation CO has to worry about many of the same things at the surface CO, but must depend on his crews to exercise judgment when hundreds of miles away for the ship. Hopefully the aviation CO has instilled a good sense of risk management in the aircrews when they have to make risk decisions without his/her advice.

The point of my little blurb is to highlight that operationally, commanders do a great job of managing mission accomplishment and risk so that mission is maximized and risk is mitigated, minimized or eliminated.  Fast forward to the Pentagon.  Now those commanders who were so good at minimizing operational risk must deal with a new risk, budget execution risk, or said another way, “What are the chances that this program will be successful, given the level of funding?”  I was one of those commanders.  As an operational commander, I insisted on making sure all risks associated with a mission had been considered and mitigated…….no less than about 98% chance of safe success was tolerated.  But when it came to taking risks associated with the Navy budget, I was far more tolerant.  For instance, “What’s the chance that an LCS will only cost $220 Million?”, I would ask the Program Manager.  When the answer came back,”About 20%”, I would say, “OK.  Guess we will have to go with that.”  Why was my risk tolerance so much greater as a budgeteer?  Most likely it was because most of the decisions affected events far in the future and I would not be around when programs matured.  That attitude was reinforced by the excessive optimism that always goes with budget building.  This notion of budgetary risk is not new nor mine.

Former CNO Vern Clark once asked me as the N81 (Navy’s Ops Research group) if we could characterize the risk built into the budget and it was a very hard thing to do.  I don’t remember all the details but as I recall we came up with several categories of risk:

  1. Institutional Risk.  The degree of support by leadership of a particular program.
  2. Execution Risk.  The degree to which a program was underfunded
  3. Political Risk.  The degree to which this program was supported by the Administration or Congress
  4. Financial Risk.  The degree to which the assumed efficiencies built into the budget were achieved
  5. Economic Risk.  the degree to which the economy would support the Five Year Defense Plan

Some of these risks were subjective and others data-based.  The aggregation of them would give the CNO an idea of how much risk was being carried by a particular program.  Financial risk was the most interesting of the four.  It turned out we discovered that we had assumed away tens of Billions of dollars in efficiencies, but never went back to see if we achieved the saving associated with the efficiencies.  In a sense, it didn’t matter because once we take the money, it is never put back.  I’ll end up by saying the FY15 budget on the Hill now has a fair chunk of “Efficiencies” in it.  Will they be achieved?  What exactly is being done to put these efficiencies in place?  How will you know if the efficiencies were achieved and what will you do if they are not? Are these efficiencies or wedges (unexplained cuts)? These are the questions the Hill should be asking the risk-takers in the Pentagon.

The DoD Budget Deli: One Slice of Salami, Please.

There were several good articles in the papers regarding the DoD budget over the weekend. The Washington Post had a good one that provided a pretty good summary.  As an old Intruder guy I have to point out that the article notes the cancellation of the A6 Intruder, with a nifty link to some information on the Venerable Intruder. It’s not often one gets to scoop the vast reporting resources of the WaPo so here goes:A6 Intruder
Dear WaPo Editorial Board,

The Intruder was retired on 28 February 1997 and most of them are either in an underwater reef of the coast of St. Augustine (known as Intruder Reef), collecting dust at Davis-Monthan AFB or residing on a stick at some NAS front gate.  It is hard to believe  you confused the handsome, sleek Intruder with the Warthog, but to ensure future OpEds are factually accurate, I offer my services (at the standard rate!).

OK, that’s off my chest!  Back to the 21st Century. The Post article was entitled  “A  Defense Budget Based on Hope” and outlines some disconnects between rhetoric and reality.  As those of you non-military folks who read my musing know:  Hope is not a strategy, and that is just as true in the budget world as it is in the tactical world.  To be sure the building of the DoD budget is a complex spider web of interconnecting elements, each of which is generally independent of most others.  Each element is likely to have an evangelist associated with it (Congress, Combatant Commander, Contractor, Administration, Special Interest Group, Service Chief or Secretary, etc.) and each evangelist has some varying degree of  veto power.  Most decisions, especially the big ones, require consensus, so you can imagine how difficult it is to make  cuts to any one program.  That’s why the preferred method of budget cutting is the tried and true salami slice.  By the way, sequestration was just a salami slice, albeit a big one.  One of DoD’s points when countering sequestration was they weren’t allowed to make the decisions.  I contend that even if Congress had just handed DoD an undefined cut, given the decision making rules, in the end, DoD would have sliced the salami, just in a different way.  It’s the only thing that works because the “salami slice” method requires no accountability, affects all programs equally, doesn’t usually kill anything and makes all equally unhappy.  The art to surviving “Salami Slice” budgeting is to demonstrate that your program is so critical to national defense that it should be exempted  (usually personnel, health care, etc).  In the Navy, these were described as “Flagship Programs.”  Not only were Flagship Programs exempt from cuts, you generally had to plus them up.  Of course, all exemptions do is off-load a larger part of the bill to those programs who were not smart enough to come up with a reason for exemption.

As one of the old Dinosaurs, I was accused of always reverting back to the Salami Slice, despite the well-meaning intentions of all to make the budget process all about informed choices, analysis and supporting the strategy.  I tried but failed.  In the end the people who cried loudest about being allowed to make choices were unable to do so.  As the Head Miller of the Budget Grist Mill, I was required to grind whatever grist the mill required to submit the budget on-time (which is no longer apparently the case).  That required a trip to the deli, slicing the salami and living with unhappy people ever after. All in a day’s work.  Bob’s your uncle.  That’s that!!!!!!!

By the way, this isn’t what I wanted to write about today, but I got lost in the salami thing, so bear with me.  Tomorrow’s topic: Budget Risk and How I Learned to Love It.

Top Shoe! General Powell was Right!

I was very pleased to see a piece in San Diego Union-Tribune this morning about the establishment Ship Turn a Top Gun-type school for our Surface Warriors.  VADM Tom Copeland, Commander of Naval Surface Forces established  “Top Shoe” (my term, not his) to foster a generation of young surface warriors who really know their craft, not just their weapons systems.  For those outside of the Navy, there are a few terms which you should probably know. Aviators are know as  “Brown Shoes” because they wore brown shoes with their working uniforms and their aviation green dress uniform (which was reserved for aviation only).   Aviators commonly referred to the Surface Lou's Photo Warfare community as “Black Shoes” because they  wore the traditional black shoes with everything, including their pajamas.  They also seemed to have penchant for wearing those thick plastic, black-framed eye glasses that no self-respecting Brown Shoe  would be caught dead in.  Over the years, aviators tended to drop the Black from the equation and generally used the term “Shoes” to describe their beloved surface counterparts.  I don’t know what’s happened in the last few years with aviator uniforms, but I know the Aviation Greens are gone and thankfully, so are the black glasses.

When I was on the Joint Staff during the time that General Powell was the Chairman of the Joint Chiefs, I remember receiving bits of wisdom on the occasions that I happened to be in a meeting with him.  There are the famous 13 rules for leaders ( in any position, military or otherwise) that General Powell is known for and worth repeating here:

  1. It ain’t as bad as you think.  It will look better tomorrow.
  2. Get mad, then get over it. (my personal favorite)
  3. Avoid having your ego so close to your position that when your position fails, your ego goes with it.
  4. It can be done.
  5. Be careful what you choose: you may get it.
  6. Don’t let adverse facts stand in the way of a good decision.
  7. You can’t make someone else’s decisions.  You shouldn’t let someone else make yours.
  8. Check the small things.
  9. Share credit.
  10. Remain calm.  Be kind.
  11. Have a vision. Be demanding.
  12. Don’t take counsel of your fears or naysayers.
  13. Perpetual optimism is a force multiplier.

I also seem to recall a few others that didn’t get so well publicized.  I can’t vouch for their authenticity, but with all due respect to one of my greatest role models, I have always attributed these two to the good General as well.

  1. There are no rumors in the Pentagon.  Sooner or later everything comes true.
  2. There’s nothing new in the Pentagon.  It’s all been seen before.

The establishment of the “Top Shoe” school reminds me of the second unofficial rule.  As a young lad I was very lucky to be assigned to a “Black Shoe” staff as one of the few aviators aboard (back then it was called a Cruisier-Destroyer Group) and  part of my training was to attend the dreaded Tactical Action Officer School (TAO).  It was the most intense six weeks of training I have ever experienced.  But when I graduated, I knew just about everything about operating the combat systems, the threat, tactics and the logistics of running combat operations.  In my mind it was a “Top Gun” for Surface Warriors.  Over the years I think that TAO training was scaled back in favor of more technical subjects.  With the  establishment of the new school it appears the emphasis is back and I think it’s a great idea. Let’s hope it doesn’t fall prey to the budget axe.

But remember…with all due respect to my surface buddies……..there’s nothing like launching from a carrier, zipping around at Mach 1, turning and burning against a worthy adversary, and winning the fight (Fox 2, You’re Dead!).  And after all that, you still have to come back and land your 20 ton machine of death on a pitching and rolling deck before you can brag about your victory in the ready room. That’s Top Gun!!!!!

 

Was the QDR Written by a Presbyterian?

I commented last week on my expectations concerning the QDR and I wasn’t disappointed 2014 QDRwhen I got around to reading it yesterday.  After reading it through a couple of times (available here), I was still pretty much confused about what it was trying to say.  And it didn’t look much like a strategy document to me…mostly filled with budget numbers and reasons why we couldn’t do this or that because of it.  In the end, it’s definitely a document very much “informed” by the realities of the budget.  I came away with the impression that it was less about strategy and more about money, especially given the frequent references to budget woes.  I stand by my comments in the recent Q•D•Arrggghh  article about the difference between “constrained” and “informed.  I can’t tell the difference, nor apparently, can the authors of this tome.  It was pretty much more of the same from the last QDR…….nothing jumped out at me.

For fun, I wrote down a few of “Pentagonisms” from the Executive Summary which I thought I would share along with a short definition in normal-speak:

  • New Presence Paradigm: Overseas Bases
  • Hybrid Contingencies: Kludges
  • Proxy Groups: Terrorists
  • Dynamic Environment: The Real World
  • Asymmetric Approaches: More with less
  • Rebalance Tooth-to-Tail: Cut contractors
  • Win Decisively: Win
  • Rebalance: Cut
  • “Opportunity, Growth, and Security” Initiative: Slush Fund
  • Innovation:  Not in DoD dictionary 
  • Multi-lateral Security Architecture: Treaty
  • Force Planning Construct: Size
  • Efficiencies: Negative Budget Wedges

Well, I grow weary of writing them down.  I’ll say one thing for the document….It’s a Presbyterian minister’s dream.  Presbyterians are well know for their penchant for ORDER, ORDER, ORDER!!!!  Sermons are typically organized into three points with two or more sub-points and a healthy dose of references to Bonhoeffer and Kierkegaard.  My favorite Kierkegaard quote is “People demand freedom of speech as a compensation for freedom of thought, which they seldom use.”  As I read through it, I was trying to capture the taxonomy of thought.  Let’s see, we have 3 Strategic Pillars, 4 Core National Interests, 4 Strategic Imperatives, 3 Areas of Risk, etc.   And they are all interrelated and interdependent!  I can’t keep it all straight.

Anyway, the QDR is out and we can all tune back into Duck Dynasty, The Voice, or whatever other twisted view of reality you may retreat into every night.  And why is all this Energy stuff in there? Since when is the DoD the EPA?  (Sorry for the random comment but I just had to get it of my chest!) Perhaps the best part of the whole schmegegge is the Chairman’s Assessment at the end.  At least he puts out a list to which I can relate.  In the end what does it all mean and what are our real priorities?  According  to the plain language of General Dempsey:

  1. The survival of the Nation
  2. The prevention of catastrophic attack against U.S. territory
  3. The security of the global economic system
  4. The security, confidence, and reliability of our allies
  5. The protection of American citizens abroad
  6. The preservation and extension of universal values.

AMEN

(Why didn’t we say that in the beginning and omit the other 63 pages?)

Meatball, Lineup & Angle of Attack

The House Intelligence Committee is looking into the apparently surprising Russian response to the crisis in the Ukraine.  I’m only a junior assistant policy wonk (one tour on Joint Staff as a policy guy) but as I heard this news on the radio this morning, a few random thoughts popped into my head which I thought I would share.

The first thought that came to mind is the similarly between intelligence analysts and meteorologists.  In the end their forecasts are just a guess…albeit an educated one.  It seems as though regardless of the accuracy of their reports, they seem to get a pass because, after all, “It’s just a guess.”  I grew up on a farm and I remember my father hanging on every word the weather guy on TV had to say because he had to make  some big decisions based on their forecast. If the weatherman said it was going to happen, my father believed him.  If it turned out he was wrong, my dad shrugged his shoulders and said “You can’t control the weather.” As a Battle Group Commander at sea, the first thing I wanted to hear in my morning briefing was the weather forecast so I could keep my ships and crews out of harm’s way and still accomplish the mission we were assigned.  I think the same thing is true in the intelligence world.  We can only make educated guesses into what may or may not happen, because in the end, we just don’t know. Given that we spend lots more money on intelligence (probably over $80 Billion a year) than on meteorology (NOAA’s FY 14 budget request was around $4 Billion), I would expect a higher degree of accuracy and more “education” (and coherence)  in the intelligence community’s guesses.  I expected my weather guesser to begin his briefing each morning with what he predicted yesterday and to give himself a grade on how he did.  Guess what?  The quality of his forecasts improved.  I would expect the Intelligence Oversight  Committees to do the same thing.  Otherwise the intelligence community is an “out of control” system with no accountability.  To be fair, Intel community leaders say they provided lots of information on the situation to the leadership, albeit conflicting in some cases.  I don’t know what I would have done if I had two meteorologists giving me conflicting information.  It’s gonna rain!….No, it’s gonna be sunny!    NO, it might be a hurricane!   Isn’t that part of the problem though?….Too many people with too much information, presenting confusing and often conflicting analysis?    My one take-away is that given the amount of money we spend on intel, it seems that we have more surprises than we should:  9/11,  Arab Spring, Russian intervention in Ukraine, etc.

So the big question on the Hill relates to the previous paragraph: How is it that given our vast intelligence resources, we are still surprised?  Despite the unpredictability of world events, I think it comes down to what we would refer to in the aviation community as a “breakdown in the scan pattern.”  The week I reported to my initial training in the A-6 Intruder at Oceana Naval Air Station in 1975 an A-6 crashed right next to the airfield in an area now known as Lynnhaven Mall.  It seems that they ran out of gas while trying to get their landing gear UP!   The gear worked fine in the “down-and-locked” position and they could have landed anytime. But they ran out of gas, orbiting 2000 feet overhead the field and all the while taking to the Skipper, OPs Officer and the Safety Officer.  How did that happen?  The crew, both airborne and in the Ready Room, were so focused on the gear problem, they forgot to check the gas….despite warning lights and alarms… and they flamed out.  I would suggest that the Intelligence Community also had just  a bit of a “breakdown in scan.”  We have become so focused on al Qaeda and the strategic “Swing to the Asia-Pacific” that we lost focus on other potential hot spots. Intelligence is all about expecting the unexpected…….the expected information comes from open sources.  I would hope that we use this latest surprise as an opportunity to re-examine our intelligence scan to make sure we don’t focus excessively on any one area.  Ask any carrier-based Naval Aviator and they will say a successful carrier landing is all about scan: “Meatball, line-up and angle of attack!” (and a little luck doesn’t hurt).

$40 Billion: One Million at a Time?

As I was reading the morning news, I saw a piece in The Hill about SECNAV Mabus’ comments regarding the savings associated with “scrubbing” the $ 40 Billion or so the Navy spends on service contracts.  Service contracts can be just about anything from feeding Sailors in the chow hall to fixing the leaky toilets at the 4 Star’s headquarters building.  SECNAV says “We know we can save significant amounts of money just by setting up things like contract courts, which require … contracting officers to come in every year and justify the contracts.”  I don’t know about you, but I don’t think “scrubbing” every service contract, every year sounds like a way to save money.  Given the thousands of service contracts the Navy has, it would take an army (should I say Navy?) of contracting officers to  review and reissue these contracts.  I suppose I should say we already have a fair number of contracting officers so we would need more than the army we already have.  Each contract soaks up hundreds of man-hours to prepare, vet and issue on the government side, and just as many hours to prepare proposals in response from the contractor’s side.  That doesn’t sound like a very efficient way to administer service contracts…..one year at a time, one contract at a time?  I don’t think so.  Reissuing contracts year-to-year is a sure way to increase costs and increase the workload on an already overworked acquisition force.  Why would SECNAV say that?  It’s because the evil “Contractors” are easy targets and it’s a great way to deflect scrutiny away from the real issues, like the shipbuilding plan or the cost of maintaining 11 carriers, etc.  Here’s a plan: Focus less on individual contracts and focus more on how to administer them more efficiently and how to get the requirements generation process fixed.

The requirements process for service-related contracts doesn’t have to be that hard.  When the decision was made to “privatize” many of the mundane and non-warfighting related service tasks, the die was cast. The powers that be have decided that the people who stepped in to do those jobs (contractors) are one of the reason the Services can’t get their budget house in order.  Not so, I contend.  Service contractors are now an integral part of the military, performing those tasks that are  seen as part of the “tail” in the tooth-to-tail debate former SECDEF Rumsfeld initiated.  If you are not tooth, you are a candidate for a service contract.  I don’t think the average Joe in middle America has an appreciation for all the things these contractors do……Feeding Midshipmen at the Naval Academy, providing medical care for dependents, servicing and maintaining aircraft in the training commands, sailing our Military Sea Lift Command ships (yep, they are contractors), fixing leaky faucets, and building our warships!  They are all contractors.  And as mentioned by SECNAV, they cut the grass too!  But despite the intuitive feeling that it doesn’t have to be hard to know what the requirements are, it can be very hard to actually determine requirements.  Take for instance the maintenance of our bases…..mowing the grass, landscaping the entrance at the front gate, emptying the dumpsters, etc.  I recall that the Navy had a great system for determining how much “base maintenance” was needed.  It was an elaborate system of service levels, with each level being defined in minute detail….in the case of base maintenance, Level 4 might be mowing the grass once a week, emptying the dumpsters twice a week and fixing up the entrance at the front gate a couple of times a year.  Level 2, on the other hand, might be mowing the grass once a month, emptying the dumpsters when they were overflowing and never sprucing up the commissary parking lot.  Each level had a cost associated with it.  I recall during a budget session one year that the decision was made to go with Level 2.  Sound good?  We all thought so until the CNO make his first base visit of the year………Guess what?  When he got back there was a big dust up because the grass hadn’t been mowed in weeks, the dumpsters were full and the Commissary parking lot looked like the back lot of a disaster movie.  Lesson learned.   While it’s easy to talk about reductions in services, especially those related to quality of life, in practice it is difficult to live with the consequences.  So rather than get wrapped around the axle of rethinking the requirements every year, going through the machinations of issuing yearly Requests for Proposals, requiring vendors to produce proposals in response and spend lots and lots of money on both sides in the process, why don’t we figure out a way to get the requirements correct once and for all, issue efficient, multi-year contracts and put precious executive attention on the things that really matter, like how many ships the Navy needs, and how to pay for them.  That’s where the Secretary adds value, not in determining how often to mow the grass.

Stealth works in the Budget Too!

First thing: Yesterday’s blog on Shared Services fell flat on the website with only a handful of hits.  I take it the world of Shared Services is not so hot on the list of “interesting” topics.  But there’s still a lot of money to be saved there.  In fact, I would contend that there’s a lot of money floating around in areas that most people don’t find so interesting.  It’s the uninteresting that ironically is the most interesting in terms of budget cutting.  They escape scrutiny during the year-to-year  budget battles, floundering in cash. The big programs which matter, act like a Black Hole, sucking up more and more money with less and less light escaping.  On the other side of the coin, the programs with marginal dollars become the darling of the Pentagon budget cutters.  It’s ooh  so easy to cut a Billion or so from the commissary subsidy program, but try and take $10 Million from the JSF and the fan starts getting hit with “not-so-nice stuff.”  With leaders unwilling to take on the issues that really matter and foolishly focusing instead on the margins, I would suggest that they take a look at the “stealth” portions of the budget, those areas with relatively large dollars, but never targeted for cuts.  Forcing agencies into a shared service environment is one of those areas. (There, I said it and I promise never to write another word on Shared Services!).  When looking at these stealthy programs, there’s virtually no risk of offending a large defense corporation, a Congressman or Senator, or even another Service because they have no constituency.  When I did the budget for the Navy I used to think that out of the $130 Billion or so under my control, every Million had a evangelist waiting in the wings to mount the pulpit and extoll the value of their million over the remaining 129,999 million.

How about the family of Defense Working Capital Funds (WCF) and Revolving Funds?  These funds exist  in the shadows, out of public scrutiny, but with lots of dollars associated with them.  For those of you not familiar with working capital funds I suppose you could relate them to petty cash, or “Walking Around” money.  It’s the corpus of operating cash the Department uses to pay  bills day-to-day.  Here’s a link to short list of many of the DoD funds and what’s in them.  In simple terms, when  Organization A provides a service or item to Organization B, it uses the WCF funds to pay their costs and they bill Organization B, using rates set at the beginning of the year.  A takes money from the WCF and B pays it back (at least in theory).  How much money is in these accounts you ask?  North of $100 Billion…..Yep, that’s correct…$100 Billion!!  That’s roughly 20 per cent of the budget.  One of the reasons there’s so much money in these funds is the requirement to carry 7-10 days of cash on-hand.  In this age of electronic accounting, ERPs and near-perfect connectivity I can’t for the life of me figure out why it has to be so much.  Most of these WCFs have their own accounting systems (Darn! I said I wasn’t going to mention Shared Services again).  To be fair, these funds are as close to being run like a commercial business as anything in DoD, and individually they are generally well managed.  But there’s not a lot of cross-talk, the rates don’t generally reflect the real costs of good and services and they are sometimes used as a cash cow to buy just about anything.

So the next time you hear the DoD poobahs whining about the cost of  benefits, people, etc.,  why not ask them about the Working Capital Funds and what they are doing to trim them back.  I’ll bet you they will have to take that question for the record!  Not in their scan because it’s stealthy money, they don’t understand how it works and would rather slash the margins because of their inability to slash the big ticket items.

 

Blaming the innocent and rewarding the guilty!

When I was a young, steely-eyed Naval Flight Officer attending the U.S. Naval Test Pilot School with no apparent fear of death, one of the classes I took was in project management.  I have always remembered the day we talked about the phases of any project:

  1. Elation—“This is gonna be fun!”
  2. Concern—“This is turning out to be harder than I thought”
  3. Confusion–“I have no idea what I’m supposed to be doing”
  4. Terror–” If I don’t get this done, my career is over!”
  5. Laying Low –“Someone is gonna be blamed for this” (sometimes known as Search for the Guilty)
  6. Relief–“Too bad they blamed Joe…He was the only bright spot on the project.  At least it’s not me.” (Blaming of the innocent)
  7. Dismay–“I can’t believe Fred got promoted as a result of this lousy project.” (Promotion of the uninvolved)

This little parable was triggered by a commercial I heard on the radio this morning.  It was one of those commercials one only hears in DC, always during commute hours.  You know them….It’s always one of the big defense hardware manufacturers extolling the virtues of their system.  It’s especially prevalent right now since the budget is being rolled out.  I don’t know about you, but do you think anyone who is in a position to make a decision really listens to that pablum?  The big boys and girls that matter in the decision chain are all driven to work and are sitting in the back seat of the big black Town Car or Navigator trying to finish up all the paperwork they took home last night, but didn’t get to.  The same thing is true on the Metro. Do you think any of them are riding the Metro?   The closer you get to the Pentagon, the more you see all those very expensive posters about some plane, ship, tank, bomb, missile, …you name it!  I just can’t figure out why they spend all that money on that stuff.  My advice to clients is that if you hear one of those commercials or see one of those posters, the subject  is likely in trouble either within DoD or on the Hill.

So take the example of Boeing advertising the F/A-18 and P-8 aircraft.  Their claim is that they are both being delivered under budget and on-time.  That may or may not be true, but in my opinion they are both among the best managed and best value weapons systems ever delivered to the DoD.  One thing’s for sure, you don’t hear that claim for the JSF.  Remember, that’s the program that is 6 years behind and $163 Billion over budget.  Who was the big winner in the DoD budget for 2015?  The JSF, of course.  And who was the big loser? The F/A-18.  Talk about rewarding the guilty and punishing the innocent!

So my recommendation to Boeing is change the commercial, stressing how much money the F/A-18 costs and how woefully behind schedule it is.  Then people will take note and pour money into the program.  There’s an old saying in my house: “The sick get sicker, and the healthy usually wind up catching whatever it is the sick have and get sick too!”

Cyber: Too Big Not To Fail

I admit that I am not much of a cyber-techie.  I do know a little about computers though. When Microsoft announced they were  not supporting Windows XT a while back, I had a bit of a cyber-rebellion because I refuse to spend anymore money on Mircrosoft Operating Systems, which I assume, much like the NSA, report your every keystroke and video back to some central repository for “troubleshooting.”  Right….But I instead elected to move to linux.  I’ve not noticed a degradation in what I can do, don’t have to worry about virus checkers and internet security programs that slow my system down….and all for FREE!  Sometimes the simpler solutions are the best.  I think we have so many problems with IT implementations and cyberattacks because they are so complicated and intricately interwoven that it is impossible for those who make decisions to understand what they are deciding.  Unlike my previous post on the JSF (Too Big to Fail), the cybersecurity and IT world is just the opposite: Too big not to Fail!” It’s just too complicated and the consequences are too dire to trust decisions in the Information and Communications Technology (ICT) world.  (See, you are already behind, it’s no longer IT and Cyber, it’s ICT) Come on, get with it!

I received a briefing yesterday  on a report recently completed by the GSA and DoD entitled, Improving Cybersecurity and Resilience through Acquisition.” It’s signed by Frank Kendall from DoD and Dan Tangherlini of GSA. I’ve read through it a few times and I swear I still can’t make heads of tails out of it, and I very much doubt that the signees did either. The report is about increasing the use of cybersecurity standards in Federal acquisitions. Keep in mind there are similar standards for National Security Systems, so I assume they are so unique that they need their own (there’s always an exception isn’t it?) They make six recommendations in no particular order of priority:

  1. Institute Baseline Cybersecurity Requirements as a Condition of Contract Award for Appropriate Acquisitions
  2. Address Cybersecurity in Relevant Training
  3. Develop Common Cybersecurity Definitions for Federal Acquisitions
  4. Institute a Federal Acquisition Cyber Risk Management Strategy
  5. Include a Requirement to Purchase from Original Equipment Manufacturers, Their Authorized Resellers,  or Other “Trusted Sources” Whenever Available, in Appropriate Acquisitions
  6. Increase Government Accountability for Cyber Risk Management

I don’t know about you, but I don’t feel any better after reading them than before!  Heck, the wording is so complicated and full of Pentagon-speak I can’t figure out what they mean.  To be fair there are explanatory paragraphs written in the same cyber-jargon that most decision makers in the Pentagon are not likely to understand. It’s fine for the techies to toss all those words around, but wouldn’t it be better when stuff like this is released to the public it would be in the Cybersecurity for Dummies format? At least have the techies who wrote it sign it.

This all flows from the Cyber Stone Tablet, “Framework for Improving Critical Infrastructure Cybersecurity” , done by NIST and released last week. Like most bureaucratic products it’s steeped in organization, tiers, overlays, constructs, phases and interrelated touch-points.  I dare you to understand it!  I’ve seen this before.  Remember the Office of Business Transformation?  They spent so much time developing papers and frameworks and touching those interrelated points that they forgot to do anything.  It was all about organization not about doing.  I see this cyber mess going  down the same path..lots of organization and logical interrelationships with countless coordination meetings between Governing Councils.

How would I do it?

  1. Put one person in charge-the Cyber Czar (even though we don’t like Putin very much)
  2. Listen to the techies, but not be controlled by them
  3. Get buy-in from top leadership that no one is exempt from our policies and regulations
  4. Stop admiring the problem and start doing visible, effective steps to fix the problem
  5. Insist that the Cyber Czar has the authority and the money to reward the stars and punish the evildoers. (nothing gets done without control of the money in this town)
  6. Make it mandatory for all!

 I cringe when I see words like  “this is a living document” and “Use of this voluntary Framework is the next step to improve the cybersecurity of our Nation’s critical infrastructure.” We need action verbs and Proper nouns in this framework

Without those steps, the whole schmegegge will flop because It’s Too Big Not To Fail

Too Big To Fail

If you saw the Sixty Minutes piece on the JSF last night, you probably not a happy camper.  The opening salvo was pretty staggering: The program is costing $400B for 2400 airplanes, or about twice as much as the US spent to put men on the moon!  So how did we get here?  When I was a squadron Commanding Officer in the 1991 timeframe I witnessed a rare occurrence at the Pentagon, The cancellation of the A-12 Avenger program by then Secretary of Defense Cheney.  The A-12,intended to be the next generation aircraft for the US military, was scheduled for a buy of about 850 jets.  But it was 18 months behind and already $1 Billion over budget, so SECDEF axed it! The JSF didn’t just wind up 7 years behind and $163 Billion over budget overnight, so one wonders why subsequent SECDEFs let it get this far.  I think we got here in much the same way that the DoD ethics problem evolved……just a little at a time.  Despite all the warning signs and poor performance,  leadership allowed it to continue with the “hope” that with the proper amount of money and leadership, the problems would go away.  They didn’t.  All successful military officers and corporate executives know one fundamental tenet of leadership: Hope is not a good strategy.  Yet it appears that was the main strategy at work with the JSF.  I am reminded of the classic The Screwtape Letters, by C.S. Lewis in which a senior executive devil, Screwtape, provides advice to his nephew, Wormwood, an apprentice devil.  When asked by Wormwood what big event he should use to cause his assigned mortal to turn to the dark side, Screwtape replies, “Indeed the safest road to Hell is the gradual one–the gentle slope, soft underfoot, without sudden turnings, without milestones, without signposts,…” Sound familiar?

Now the program has a gun to our heads.  It’s the only TACAIR replacement on the books, not withstanding the excellent and under-rated F-18E/F, which, by the way, is a perfectly acceptable alternative well into the 21st century.  It’s ironic that in order to pay for the ever increasing JSF price tag, DoD wound up taking money highly successful programs, like the F/A-18 .  We now must resort to a strategy of hope to deliver the JSF.  There’s a lot of similarity here with ERPs, don’t you think?

There’s a lesson to be learned here.  Be vigilant early in procurement programs. Don’t let the little things get by without correction, lest one finds oneself on “the gentle slope, soft underfoot” of Too Big To Fail.