Intelligence Collection

Wayne Michael Hall spent the bulk of his career inside US Army intelligence, retiring as a brigadier general after assignments that ran from tactical battalions through joint and theater-level commands. By the time he sat down with Gary Citrenbaum to write Intelligence Collection, he had also taught and consulted across the intelligence community for years, and Citrenbaum — an analyst and methodologist who had been collaborating with him since the previous decade — brought a structured, almost academic instinct to the partnership. The 528-page volume that Praeger published in 2012, in its Security International series, is the second of the pair’s books on the practice of intelligence in what they call complex environments. The first, Intelligence Analysis: How to Think in Complex Environments, had appeared in 2010 and laid out a theory of cognition for analysts working against adaptive adversaries. Intelligence Collection picks up the other half of the same problem: how the questions an analyst eventually answers actually get fed, in usable form, by sensors and sources operating under stress.

The conversation the book joined was specific to its moment. American intelligence had spent most of a decade pivoting from the Cold War’s symmetrical, technologically rich target — the Soviet order of battle, observed from satellites and signals platforms — to insurgencies in Iraq and Afghanistan that hid inside populations and adapted faster than the collection apparatus could re-task. Doctrine, training, and the underlying collection management process had been built for the first problem and were being forced, often clumsily, onto the second. Hall and Citrenbaum aimed at that gap. They wrote for the working intelligence officer — the collection manager at a divisional or brigade S-2 shop, the staff officer trying to write requirements that would not be ignored, the planner trying to integrate a satellite tasking with a HUMINT source meeting and an aerial reconnaissance window — rather than the strategic essayist or the popular reader.

Their central argument runs through every chapter. Collection in a complex environment is, before anything else, a cognitive process. An information requirement is not a question to be answered by pointing a sensor; it is something that has to be decomposed. The thing the commander actually wants to know — say, whether a particular insurgent network intends to attack a route inside the next forty-eight hours — has to be translated, through a deliberate analytic chain, into what the adversary would have to do to make that happen; from there into the observable behaviours, signatures, and traces those actions would leave; from there into the specific indicators that one or another collector could plausibly detect; and only at the end into a tasking on a particular asset. The collection plan, in this framing, is a living model of how the analyst’s questions map onto the world. It has to be auditable, it has to be adaptive, and it has to acknowledge that the adversary is doing the same thing in reverse — building a deception plan whose indicators mimic the ones the collection plan is hunting for.

That last point is the spine of the book. Hall and Citrenbaum return again and again to counter-deception. They argue that a collection plan which assumes the adversary is a passive target — that the question is simply how to look harder or with better sensors — is worse than useless in an environment where a sophisticated opponent is actively shaping what the collection apparatus sees. The plan must include indicators of deception itself: gaps that ought to be filled and aren’t, sources that produce too consistently, signatures that appear at suspiciously convenient moments. They treat this not as an exotic specialty but as a routine requirement of competent collection management, and they push back on the cultural tendency inside intelligence shops to treat counter-deception as someone else’s problem.

The book is organised into several parts that move from theory toward execution and back. Early chapters establish the model of the complex environment — adaptive, opaque, populated by intelligent adversaries — and contrast it with the targets that Cold War doctrine assumed. The authors then walk through the planning process itself: how to translate a commander’s intent into priority intelligence requirements, how to decompose those requirements into the observable-indicator-collector chain, how to write specific information requirements that survive contact with the people who actually task collectors, and how to manage the inevitable competition for finite sensors. A long middle section treats the major collection disciplines — imagery, signals, measurement and signature, open source, and human intelligence — not as silos but as interoperating tools, each with biases and blind spots that have to be planned around. Human intelligence gets particular attention, because the authors view it as both the most underused and the most dangerous discipline in a complex environment: underused because technical collectors absorb so much of the budget and bureaucratic attention, dangerous because a single deceived case officer can corrupt the entire picture. Later chapters cover the relationship between collection and analysis, the institutional pathologies that distort tasking inside large headquarters, and the role of technical aids — databases, link analysis tools, geospatial systems — in keeping the plan coherent as it grows.

The concrete material is where the book earns its length. Hall and Citrenbaum draw heavily on US operations in Iraq and Afghanistan, particularly on the kinds of network-targeting problems that consumed intelligence shops during the surge years and after: identifying the human and logistical structure of an insurgent cell, distinguishing it from the surrounding civilian population, watching it long enough to predict an action without alerting it to the surveillance. They examine how requirements written at the strategic level were repeatedly mistranslated as they moved down through theater and corps echelons, and how tactical units learned, sometimes against doctrine, to bypass the formal collection management process when it failed them. They are unsentimental about the cost of those failures. The reader is shown, in case after case, what happens when a collection plan treats indicators as evidence rather than as hypotheses — when an asset’s report is accepted because it confirms what the headquarters already believed, rather than tested for the possibility that it was placed there to confirm exactly that.

The historical reach of the book runs further than the recent wars. The authors treat the Soviet doctrine of maskirovka — the integrated practice of military deception that the Red Army built up over decades — as a baseline reference, because it remains the most fully theorised adversary deception doctrine on the public record, and because the Russian intelligence services inherited it intact. They draw on the canonical Western deception cases as well: Operation Fortitude and the broader Allied deception architecture before Normandy, the role of double agents in the British Twenty Committee system, the Egyptian deception that masked preparations for the 1973 Yom Kippur attack on the Bar Lev line. Each of these is used to illustrate a specific point about indicator analysis — what an observer with the right plan might have seen, what a brittle plan missed, where the discipline of looking for the absence of expected signatures could have changed the outcome. They lean as well on the academic deception literature — Barton Whaley’s work on strategic surprise, Richards Heuer’s writing on cognitive bias in analysis, Michael Handel’s edited volumes on intelligence and deception — and integrate those frameworks into the collection planner’s vocabulary rather than treating them as analyst-only concerns.

Institutional critique threads through the casework. Hall and Citrenbaum are blunt about the ways that large intelligence bureaucracies distort the discipline they describe. Requirements get padded to justify favoured collection platforms; collection managers count assets tasked rather than questions answered; counter-deception slides into the gaps between organisational charts. The authors are working officers writing for working officers, and they are explicit that the planning method they advocate cuts against many of the incentives that shape day-to-day life in a J-2 or S-2 shop. They offer practical guidance — formats, checklists, sequences of meetings, ways to write a collection requirement that a tasking authority cannot quietly ignore — but they also acknowledge that the method only works if the surrounding institution lets it.

Reception of the book has been narrow and steady rather than broad. It is not a trade title, was not widely reviewed in the general press, and has never crossed over into the popular shelf that holds Tim Weiner or Mark Mazzetti. Inside the intelligence training world it has had a longer life. It is cited in syllabi at the National Intelligence University and at several of the service intelligence schools, and it has been used as a structured reference in the curricula that the US Army’s intelligence centre built up at Fort Huachuca after the post-2003 reforms. Specialist reviewers in journals such as Studies in Intelligence and the International Journal of Intelligence and CounterIntelligence have generally treated it as a serious contribution to the doctrinal literature, while noting that its prose is workmanlike rather than elegant and that its length and density limit its audience. Pushback has tended to focus on two points. The first is that the book’s framework, while sound, is more ambitious than most working intelligence shops can implement under operational tempo — that the discipline it asks for is real but expensive, and that the authors underplay the cost. The second is that the treatment of technical collection, written before the explosion of commercial overhead imagery, persistent surveillance drones, and machine-learning-driven exploitation, already feels like a snapshot of a particular moment in the technology rather than a durable map.

Where the book sits in the wider field is in the same middle it occupied at publication — between the strategic-studies literature on intelligence reform and the inside-the-fence training manuals that are not generally available to civilian readers. It pairs naturally with the authors’ earlier Intelligence Analysis volume, which it presupposes in places, and with Robert Clark’s Intelligence Analysis: A Target-Centric Approach, which arrives at related conclusions about the integration of collection and analysis from a different starting point. For a reader thinking specifically about how machine-assisted intelligence platforms — Palantir’s Gotham being the obvious example, but also the broader generation of link-analysis and geospatial fusion tools that grew up around the same wars — fit into a working intelligence shop, Hall and Citrenbaum describe the planning substrate that those tools have to slot into. The software changes the cost of each step in the observable-indicator-collector chain, but it does not change the chain itself, and a platform deployed into a shop that has not internalised the underlying discipline tends to produce faster versions of the same mistakes. The book is also useful, against its grain, as a reading of why those platforms came to exist: the workflows it describes by hand are exactly the ones that the post-2008 generation of analytic software was designed to industrialise.

What is likely to age well in Intelligence Collection is the cognitive method — the insistence that collection management is a planning discipline rather than a sensor-tasking exercise, that adversary deception has to be modelled inside the plan rather than handled by exception, and that the relationship between collection and analysis is a single loop rather than two adjacent activities. What has already dated is some of the technological texture: the implicit assumptions about what imagery, signals, and open-source collection can do in 2012 read, more than a decade on, like a description of a transitional moment. The intelligence community that Hall and Citrenbaum wrote for has been reshaped by commercial space, by the integration of machine learning into every step of the analytic chain, and by an environment in which adversary deception now operates at the scale and speed of social platforms. The underlying discipline the book describes — patient, suspicious, structured — is more relevant in that environment, not less.