Security Intelligence Community say 'must finish what we have started'

This week brought us not just one but three reports from the ‘intelligence community’.

First there was the annual report of the Inspector General for Security and Intelligence (IG), Cheryl Gwen. It is pretty damning, and echoes many of the criticisms raised in the State Services 2014 review of the intelligence community, especially regarding the SIS.

The IG's annual report was covered on stuff, but there is a better analysis on No Right Turn. The report is littered with findings like this:

In the course of these inquiries, I identified systemic shortcomings in the procedures followed by the NZSIS. […] The process of preparing and finalising those reports has been more protracted than I would have wished because of the time required for my office and for NZSIS to work through the systemic issues that I had identified.

And it culminates in this conclusion:

As noted above, the Service lacked a compliance framework and policy, audit framework and dedicated staffing throughout this reporting period.[...] For those reasons, I cannot conclude that NZSIS had sound compliance procedures and systems in place.

Note that the innocent sounding word ‘compliance’ means nothing less than the organisation operating within the law. 

As if to counter the impression of an out of control organisation a reader would get from this report, a quasi-internal review by the SIS which had concluded in July was declassified a few days after the release of the IG’s report. It comes to the almost opposite conclusion:

The reviewer did not find any evidence of (nor was given any reason to believe there was) significant non-compliance within NZSIS.

So everything is OK then? Maybe Cheryl Gwen is a bit too critical. Or maybe Rebecca Kitteridge is a lot less concerned about these things now that she is actually responsible for the SIS than she was in 2013 when she reviewed the GCSB. Her report back then read very similar to Gwen‘s report about the SIS does now. Sometimes the best way to shut critics up is to put them in charge.

The GCSB’s Moment of Truth

There has been much talk recently about the GCSB’s ‘charm offensive’ and how it is becoming more transparent, and how that is good for democracy. However, what is pitched as transparency and openness is in reality just spin doctoring.

On 11 September, the Privacy Commissioner John Edwards organised a ‘Privacy Forum’ at which GCSB director Una Jagose was going to “describe what GCSB does to deal with cyber threats, including outlining the CORTEX programme.”

At the start of the meeting, two activists of the Stop The Spies coalition (of which OASIS is a part) unfolded a banner reading “This is a Five-Eyes Propaganda Exercise”. That was enough for Jagose and Edwards to cancel the entire event.

It has since become clear just how stage managed the event, and its repeat on 29 September, were.

A response to an Official Information Act request for Una Jagose’s speech and associated correspondence revealed that “the communications are between the Department of Prime Minister and Cabinet (DPMC) and the Office of the Privacy Commissioner. This is because communications function for the GCSB is managed by the National Security Communications team base in DPMC.” This means that every word we hear or read from the GCSB comes from the same people who write John Key’s speeches.