Program Integrity Alliance
All Insights

Pre-Mortem Governance: Imagining Failure Before It Happens

GovIntegrityOctober 15, 2025
Pre-Mortem Governance: Imagining Failure Before It Happens

When disaster strikes in America, the federal government often turns to the same ritual. The crisis unfolds, programs are rushed into motion, billions of dollars are moved at record speed, and after the dust settles, a solemn report appears, its title inevitably some variation of “Lessons Learned.”

After Hurricane Katrina came the White House’s 2006 Katrina Lessons Learned report, which chronicled failures of readiness, unclear lines of command, and a lack of testing of the National Response Plan under real pressure. Five years later, the Financial Crisis Inquiry Commission lamented that regulators “failed to imagine” a housing downturn becoming a full-blown financial contagion. After two decades of trying to build a democratic state in Afghanistan, the Special Inspector General for Afghanistan Reconstruction found that planners ignored so-called “negative adaptation,” the ways local actors would inevitably game or corrupt well-intentioned aid programs.

The pattern is familiar. We are great at post-mortems, but allergic to pre-mortems. We investigate failure with rigor; we rarely rehearse it. Scenario planning exists, but too often as theater—a tabletop exercise, a checklist item, an act of compliance rather than of imagination.

What if foresight itself were formalized? What if, before the next crisis, federal agencies were required to conduct a “Pre-Mortem Governance Plan,” a structured, data-driven rehearsal of failure that treated scenario planning not as performance but as control?

The Lack of Anticipatory Imagination

In the private sector, financial institutions undergo annual stress tests designed by the Federal Reserve. The purpose is not to predict the next recession but to understand how their balance sheets will respond when, not if, the improbable happens. This discipline of testing the system to strengthen it is at the core of resilience. Like going to the weight room, practicing this discipline builds the resilience muscle in the financial services sector.

Federal emergency programs need the same muscle. When a pandemic, hurricane, or cyber-attack hits, we default to the binary of speed versus integrity: get the money out the door first, clean up fraud later. Controls become forensic, not preventive. Inspectors general chase ghosts after the fact, and Congress funds oversight long after the damage has been done.

A pre-mortem governance system would invert that logic. It would embed foresight as a budgeted, mandatory step before funds flow, forcing agencies to ask not “How will we respond?” but “How will this fail?”

From Simulation Theater to Control System

The federal government already runs preparedness exercises. FEMA does drills, DHS runs simulations and cybersecurity tabletop exercises. Yet most are episodic, designed to satisfy audit requirements rather than drive design change. They lack institutional gravity. And too often, what was learned is forgotten when the stakes are higher in an actual emergency.

To work as a control system, scenario planning must have consequences. Findings must feed directly into funding decisions, risk appetite statements, and oversight plans. A pre-mortem shouldn’t be a tabletop, it should be a go/no-go gate.

The failures chronicled by Katrina, the financial crisis, and Afghanistan all trace back to assumptions left untested. The National Response Plan was never stress-tested under real-world surge conditions. Regulators “failed to imagine” how a housing downturn could cascade through the global system. SIGAR found planning horizons in Afghanistan were unrealistic, and the government never modeled scenarios of adaptive corruption. Each tragedy was, in retrospect, an unrun simulation.

Designing for Fraud Resilience

Fraud prevention offers a particularly compelling proving ground for pre-mortem governance. Every pandemic program—the Paycheck Protection Program, Pandemic Unemployment Assistance, Employee Retention Tax Credits, disaster relief grants—carried an inherent fraud risk amplified by speed and scale.

Imagine if, before any such program was launched, the implementing agencies conducted a 48-hour “fraud pre-mortem.” Treasury’s Office of Payment Integrity, and all relevant agencies, such as FEMA, SBA, HUD, and IRS, along with the OIGs of all these agencies, could convene to stress-test systems under adversarial conditions.

How would identity-verification tools hold up against large-scale rings submitting applications using stolen or synthetic IDs? What happens when automated bots submit tens of thousands of applications in minutes? Could eligibility rules be gamed by cross-state mule networks or mass-filed fake businesses?

The goal would not be to predict every scheme but to expose fragility, to see which controls fracture first when stress-tested under surge conditions. Over time, the government could build what might be called a Fraud Shock Table, a library of adversarial scenarios drawn from DOJ and OIG cases, and GAO and academic studies. Each scenario would be reusable, updated with data from real investigations, creating a living map of how fraud evolves. The idea is to treat fraud-risk management the way the financial system treats liquidity—something to be modeled, tested, and reported.

The Charter of Crisis Control

Pre-mortem governance would also force agencies to make explicit the trade-offs that are usually buried in rhetoric. Every emergency program faces tension between false positives and false negatives, between access and assurance. In the rush to disburse funds, those trade-offs are often left implicit, producing after-the-fact debates about who was too cautious or too permissive.

A Fraud Risk Charter signed at program launch could make those choices transparent. For example: “We accept up to three percent false positives in eligibility in exchange for keeping confirmed fraud under one percent.” Such clarity would not only guide operational design but also give watchdogs and Congress an anchor for evaluating performance. It would convert philosophical debates into measurable thresholds. This kind of risk charter might seem technocratic, but its cultural effect would be profound. It would acknowledge that perfection is not the goal, preparedness is.

Why Foresight Fails

The absence of pre-mortem governance is not for lack of data or expertise. It is a failure of incentives. Success is measured in outputs—dollars obligated, forms processed, deadlines met—not in the number of uncomfortable questions asked before launch.

Bureaucracies reward compliance, not curiosity.

Post-mortems are politically safe. They arrive when accountability is diffuse and memories have faded. Pre-mortems are riskier, they invite the heresy of doubt. Yet research suggests they work. Psychologist Gary Klein, who pioneered the “pre-mortem” method in organizational psychology, found that asking teams to imagine a project’s failure and reason backward improves detection of potential flaws by up to 30 percent. The act of imagining failure activates different cognitive pathways, it gives permission to think the unthinkable. If the federal government institutionalized that mindset, not as an occasional exercise but as a standing requirement, it would shift culture from defensive to diagnostic, from reactive to anticipatory.

The pandemic relief programs offered a crash course in the cost of improvisation. The Paycheck Protection Program and Pandemic Unemployment Assistance saved businesses and families, but their design shortcuts invited an unprecedented wave of fraud. Billions went to shell companies, synthetic identities, and stolen personal data. These vulnerabilities had long been documented but no one had tested them under live conditions.

A pre-mortem could have exposed those cracks. The absence of cross-state data matching, the fragility of state unemployment systems, the limits of existing identity-verification APIs all could have been uncovered in advance. Instead, those weaknesses were discovered by criminals first and auditors later. If history is any guide, the next emergency will bring the same pressure to act fast. The question is whether we’ll finally budget for foresight or once again pay for hindsight.

Building the Architecture

Institutionalizing pre-mortem governance wouldn’t require reinventing the bureaucracy. The tools already exist, but they’re scattered. OMB’s Circular A-123 establishes the principle of enterprise risk management. Treasury’s Office of Payment Integrity is building data-sharing infrastructure for payment screening. The PRAC’s Pandemic Analytics Center of Excellence has developed models that could anchor a federal scenario library.

What’s missing is connective tissue, and a mandate. OMB could require pre-mortem fraud-risk reviews for all emergency programs above a defined threshold, integrating them into the same readiness cycle as financial and cyber reviews. Treasury could host a small, permanent red-team unit responsible for maintaining the scenario library and running simulations across agencies. Congress could reserve a fraction of emergency appropriations— as little as one-tenth of one percent—for scenario testing and readiness. Foresight, in other words, must be funded as infrastructure.

Conclusion

America does not suffer from a lack of intelligence, data, or post-crisis introspection. It suffers from a failure to imagine failure before it happens. Pre-mortem governance would not eliminate fraud or mismanagement but instead would normalize foresight as a discipline. It would force agencies to test their assumptions the way engineers test bridges, under simulated stress, not theoretical concepts. Every disaster leaves behind a paper trail of warnings that were observed but not institutionalized. We must stop studying the wreckage and learn to run the crash tests first.

Endnotes

  1. The White House, The Federal Response to Hurricane Katrina: Lessons Learned (2006).

  2. Financial Crisis Inquiry Commission, The Financial Crisis Inquiry Report (2011).

  3. Special Inspector General for Afghanistan Reconstruction (SIGAR), What We Need to Learn: Lessons from Twenty Years of Afghanistan Reconstruction (2021).

  4. U.S. Government Accountability Office, A Framework for Managing Fraud Risks in Federal Programs (GAO-15-593SP, 2015).

  5. Office of Management and Budget, Circular A-123: Management’s Responsibility for Enterprise Risk Management and Internal Control (2016).

  6. Pandemic Response Accountability Committee, Pandemic Analytics Center of Excellence (PACE) Overview(2022).

  7. Gary Klein, “Performing a Project Premortem,” Harvard Business Review, September 2007.

  8. U.S. Department of the Treasury, Program Integrity: Office of Payment Integrity Mission Overview (2023).

Photo by Brett Jordan on Unsplash. Article first posted on GovIntegrity.