ITDashboard Blog Feed

Moving Beyond Compliance: The Status Quo Is No Longer Acceptable

2009-09-28T23:03:00Z

The threats to our nations information security continue to evolve and therefore our approach to cybersecurity must confront these new realities. In order to meet the evolving challenges we now face, Federal Information Security Management Act (FISMA) metrics need to be rationalized to focus on outcomes over compliance. Doing so will enable new and actionable insight into agencies' information and network security postures, possible vulnerabilities and the ability to better protect our federal systems.

With this in mind, we have established a taskforce to develop new metrics for information security performance for Federal agencies that are focused on outcomes. To solicit the best ideas, OMB has reached out across the Federal community, as well as to the private sector.

Participants in the taskforce include: the Federal CIO Council, the Council of Inspectors General on Integrity and Efficiency, the National Institute of Standards and Technology, the Department of Homeland Security, the Department of Defense, the Director of National Intelligence, the Government Accountability Office and the Information Security and Privacy Advisory Board.

The participants in the Security Metrics Taskforce held their inaugural meeting on September 17, 2009. OMB plans to have the taskforce develop a draft set of metrics for comment by the end of November.

The participants agreed that a new set of security metrics could move the agencies forward in securing their systems as "what gets measured, gets done." They discussed the various factors that will impact the development of new metrics, including:

A trust but verify approach
Fulfilling statutory requirements
Real-time awareness security posture

At the next meeting, the taskforce will begin developing potential metrics and we look forward to your input.

Learning from best practices

2009-08-14T20:20:00Z

On August 7, CIOs from across the Federal government gathered to share their experiences using the IT Dashboard and to discuss how to effectively manage their agency portfolios. There was vigorous debate and lots of energy in the room – and a clear message emerged: the IT Dashboard provides a powerful new tool for agency CIOs to use. However, no tool can replace good management. Ultimately, accountability for the performance of agency IT investments rests with agency CIOs.

This perspective was echoed by speakers from the Office of Management & Budget, Congress, the Government Accountability Office (GAO), and the Inspector General communities.

Looking ahead, the CIO Council is sharing best practices that enable the effective management of our IT portfolio. Recommendations will be developed in key areas such as:

Risk Management
Requirements Management
Contractor Oversight
Historical Performance

CIO evaluations are in

2009-08-05T13:21:00Z

We just reached an important milestone with respect to the Agency CIOs completing their reviews of the federal government’s major IT investments. On June 30, when we launched the IT Dashboard, just 20 percent of investments were evaluated. Today, 100 percent of the government’s IT investments have been evaluated.

In 1996, the Clinger-Cohen Act established agency CIOs and called on them to “monitor the performance of information technology programs of the agency, evaluate the performance of those programs on the basis of the applicable performance measurements.” The completion of these evaluations is a significant step towards fulfilling these duties. As a result, CIOs are now better poised to advise the head of the agency regarding whether to continue, modify, or terminate a program or project.

The IT Dashboard is a powerful platform for delivering insights, but it is not a substitute for good management. On August 7, we will convene the CIO Council to share best practices and apply management approaches to improve data quality, increase transparency, and enhance project performance across the federal government. We need to adopt an evidence based approach to governance by employing platforms like the IT dashboard so we can report, analyze, monitor, and predict performance.

Evidence-based decisions

2009-07-17T20:32:00Z

Today, the Department of Veterans Affairs (VA), under the leadership of Secretary Shinseki and VA CIO Roger Baker, announced that it will temporarily halt 45 IT projects which are either behind schedule or over budget and work to determine whether these programs should be continued. We’re not talking about a trivial sum here—the Fiscal Year 2009 combined budget for the 45 projects is approximately $200 million. The worst offender of the bunch was 110% over budget and 17 months behind schedule.

We were able to catch these contracts, in part, thanks to our new tool, the "IT Dashboard” which helped shed light on the performance of projects across the federal government.

During the next few weeks, the VA will audit these 45 projects to determine whether additional resources or new management teams can get them back on schedule. If they can’t be fixed, the projects will be canceled.

If you are just hearing about the IT Dashboard for the first time, it allows you to see which IT projects are working and on-schedule (and which are not), offer alternative approaches, and provide direct feedback to the chief information officers at federal agencies.

Given the size and complexity of the federal IT portfolio, the challenges we face are substantial and persistent. The dashboard is not a substitute for good management. Its value comes from leaders who use the information to make tough, evidence-based decisions on the future of IT investments.

The VA’s announcement is part of a broader effort by the Administration to make the federal government more transparent and to boost accountability and drive better performance. From IT accountability to personnel and contracting reforms, the administration is committed to providing better value, efficiency, and effectiveness for taxpayers’ dollars.

Welcome to IT Dashboard – The Blog!

2009-07-13T22:30:00Z

It has been an exciting time since we launched the IT Dashboard. There have been more than 20 million hits so far, and we’ve received an encouraging response from members of Congress and the public in support of our efforts to increase transparency. One of those 20 million hits was from a prominent IT user; you see for yourself here:

For anybody just joining us, the“IT Dashboard” is a new, one-stop clearinghouse of information that allows anyone with a web browser to track federal IT initiatives and hold the government accountable for progress and results. A part of USASpending.gov, the dashboard allows you to see what IT projects are working and on-schedule (and which are not), offer alternative approaches, and provide direct feedback to the chief information officers at federal agencies – in effect, keeping tabs on the people who are responsible for taxpayer dollars for technology.

Leading up to the launch, we tapped the brightest and most innovative minds from Federal agencies, Congress, independent oversight organizations, and the private sector as we built the IT Dashboard. Over 400 federal employees joined our daily open house sessions for a hands-on opportunity to try the Dashboard, check their data, and suggest improvements. Until July 31, CIOs can submit investment evaluations and update other investment data. During this time, you will notice that the site will continue to be in “beta” as we deliver additional key features.

But we can’t simply make this an exercise in federal agency reporting. That is why we started this blog. We want to hear from you about what works and what doesn’t with the site. Is there a more innovative approach that an investment should consider? Does the contract data look incorrect to you? Is there an application that we should add? This is a site to serve you, and to do that, we need to hear from you.

So bookmark this blog, and come back to us often. There is a lot happening over the next few weeks as we review the entire federal IT portfolio, assess the performance of investments, identify areas to save money, improve performance, and share best practices.