Institutional moves
Capacity Gap
An institution's stated mission outruns its actual ability to execute, and the gap becomes consequential.
What It Is
Capacity Gap appears when a public or private institution claims a capability — to oversee, to deliver, to secure, to verify — that its staffing, technology, budget, or process cannot actually support, and the gap produces a visible failure or near-miss.
Readers often mistake institutional failures for malice or symbolic compliance. Capacity Gap names the more common reality of competence falling short of mandate, which calls for different responses than either ill intent or theater.
How To Spot It
The story documents an output (breach, lapse, delay, misclassification) that traces back to the institution lacking the people, tools, or authority to do what it has claimed. The gap is not hidden; it has been visible internally.
- Data breaches at agencies that claimed cybersecurity readiness
- Backlogs at courts, FDA reviews, immigration, benefits processing
- Inspectors general flagging unstaffed oversight roles
- Stories where 'we don't have the capacity to' is said out loud
CMS Medicare provider database exposed some health providers' Social Security numbers
CMS is the federal agency tasked with safeguarding provider data, and a database exposure of Social Security numbers points to a gap between the security capability the agency claims and the staffing or systems it actually runs. The breach is the visible output; the under-resourced posture has been the unstated condition.
False Positive
Symbolic Compliance overlaps but is distinct — that species is about performance without intent to act. Capacity Gap is about wanting to act and being unable. If the institution would fix it given resources, it is a Gap; if it would not, it is Symbolic.