 |
|
Issue 7: July 25, 2006
|
|
The DotGov Buzz is an e-mail newsletter published by the GSA Office of Citizen Services and Communications to keep opinion leaders, policy makers, IT professionals and others up on the latest developments in e-government. Pass it along to your colleagues and let us know if you want to subscribe on your home e-mail. To SUBSCRIBE, submit a new e-mail to LISTSERV@LISTSERV.GSA.GOV, with SUBSCRIBE THEBUZZ in the body of the message, followed by your first name and your last name. This and previous issues of The DotGov Buzz are available at www.firstgov.gov/dotgovbuzz. |
 CIO Spotlight: Michael W. Carleton, U.S. General Services Administration
Like many Federal agencies, GSA has experienced tremendous changes over the past five years. Mike Carleton has been in the middle of it. "Organization change requires continuity and sustainability," he said. "What we've done at GSA in capital planning and investment, security and EA [enterprise architecture] over the last few years has had a tremendous effect on the culture at GSA." As one of the longest serving CIO's in the Federal Government, having served as the GSA CIO for more than 5 years, Carleton has created a goal-oriented office that is focused on the future while it manages for today. Carleton came to GSA from the Department of Health and Human Services, where he served as CIO for the Office of the Secretary and Deputy Director for Information Resources Management. He became GSA's CIO in October 2000, after a brief tenure as Acting CIO for the GSA Public Buildings Service. He is pleased that the GSA CIO has "a seat at the table" and can participate in strategic decision-making at the top level of the agency. However, he views his responsibilities for running the agency's $500 million IT program as paramount. "I retain a substantial operational role at GSA running shared IT services that has to work reliably before I can expect others to want to hear from me about strategic issues," he said, noting the three main operational challenges he faces:
Establishing a business strategy requires the integration of many internal perspectives, Carleton pointed out. It also requires looking at your organization from the customer's viewpoint. "We have a substantial EA program now, and we're looking at value chains from the customer's perspective. That will allow us to look at how best to implement business strategies from the perspective of work processes, human capital improvement, IT investments, and the complementary roles of our customers and suppliers all in relation to each other." In meeting these challenges he is focused on performance and team building, the cornerstones of his avocational life as a competitive amateur soccer player and team captain at Boston University. As leader of an office of more than 120 staff, his ultimate goal is "create an organization that has the capacity to deliver service and to successfully adapt going forward." "I'm proud of the quality of service, reliability, and customer satisfaction of this office," he said, citing a recent Gartner study that found the cost and quality of GSA's infrastructure operations compare favorably with similar large and complex private sector organizations. Carleton believes these favorable benchmarks translate into customer satisfaction, which is reflected in the 88% favorable customer satisfaction score his office received in 2005. These days, he is focused on getting to "green," as in the OMB Scorecard. GSA is heavily involved in implementing the President's Management Agenda, particularly its initiatives for expanding e-government. Carleton and project managers throughout GSA are leading the implementation of five of the Presidential E-gov initiatives, and participating in seven others. "We're close to green status right now," said Carleton. "We're making steady progress on our EA maturity assessment, the Earned Value Management program, and these E-gov initiatives." GSA is also center of excellence for the Financial Management Line of Business, and Carleton is involved in helping to consolidate agencies' financial management systems. GSA's EA was also the first to go to "green" based on business process model development. Carleton is very active in the Washington area IT community. He is a past president of the Capital Area Chapter of the Society for Information Management (www.simnet.org), and has a history of commitment to staff development. "One thing I do is facilitate a regional leadership development forum that targets emerging IT leaders and focuses on skills development outside of the usual technology area, such as organizational change and business strategy." With master's degrees in Public Administration from Northeastern University and Information Resources Management from Syracuse University and a bachelor's degree from Boston University, Mike Carleton has a special commitment to leadership training and education. He teaches IT strategy at American University's Kogod Graduate School of Business, and is a frequent speaker at the National Defense University, Information Resources Management College, of which he is also a graduate. He is currently vice president for professional development on the Board of the American Council for Technology, and an active participant in ACT's mentoring programs. He continues to find learning experiences everywhere. On a recent trip to the soccer World Cup, a 50th birthday present from his wife Jeuli Bartenstein, "it was interesting to observe the effects of web-based electronic commerce technologies on the distribution of World Cup tickets," he said. "They did it in a manner that combated counterfeiting and scalping, while improving equity of access and enabling conditional ticket sales. So fewer folks had to deal with untrusted parties and more folks got to see their favorite teams play." As for the superb standard of play at the World Cup, Carleton offered the observation that "soccer players' skills seem to decline with age in all phases of the game except for the road trip and party, where they continue to improve with practice." |
|
E-Gov Initatives: OMB releases Federal Transition Framework for cross-agency initiatives
OMB has released a pilot version of its Federal Transition Framework (FTF), which will provide a single source for clear and consistent information describing government-wide IT policy objectives and cross-agency initiatives, such as the E-Gov and Lines of Business initiatives. The FTF is a catalog of architectural information and implementation guidance for cross-agency initiatives using a simple and familiar structure that is aligned with the Federal Enterprise Architecture. It consists of a usage guide, a catalog and a metamodel reference guide. OMB will be working with these initiatives and Federal agencies during the summer to complete version 1.0 of the FTF Catalog for release in September. The pilot version catalogs three cross-agency initiatives: E-Authentication service, IPv6 transition, and the Infrastructure Optimization Initiative. OMB will add another 14 government-wide initiatives and feedback on the pilot to the next version. The release of the pilot was announced in a July 6 memo to agency CIOs and chief architects from Karen Evans, OMB Administrator for E-Government and IT. Federal Enterprise Architect Richard Burk held an industry briefing on the pilot version July 13. The FTF accelerates the ability of agencies to execute cross-agency initiatives and realize results faster. It will allow agencies to:
The real future for the FTF depends on connecting enterprise architecture to actual operations, according to industry expert Ed Seidewitz, vice president of Data Access Technologies, who was quoted by Federal Computer Week. |
|
Policy: OMB directs agencies to protect sensitive agency information and report incidents with one hour
Given numerous recent reports of potential violations of sensitive personal information held by various Federal agencies, OMB has tightened its requirements for security-breach notification and for safeguarding information assets. In a July 12 memo, OMB revised its guidance on reporting security incidents to require agencies "to report all incidents involving personally identifiable information to US-CERT within one hour of discovering the incident." US-CERT is a Federal incident response center in the Department of Homeland Security, which will forward all agency reports to the appropriate Identity Theft Task Force point-of-contact. "You should report all incidents involving personally identifiable information in electronic or physical form and should not distinguish between suspected and confirmed breaches," the memo states. The directive updates earlier OMB guidance on agency compliance with the Federal Information Security Management Act of 2002 (FISMA). Earlier, in a June 23 memo, Clay Johnson III, OMB Deputy Director for Management, called on all agencies to properly safeguard their information assets using a checklist developed by the National Institute for Standards and Technology (NIST) to protect "remote information." He also recommended that agencies implement four additional safeguards within 45 days. The NIST checklist directs agencies to take specific actions to protect Personally Identifiable Information (PII) categorized under the Federal Information Processing Standards (FIPS) Standard 199 as moderate or high impact that is either accessed remotely or physically transported outside of the agency's secured physical perimeter. It calls for agencies to follow four steps:
In addition to using the NIST checklist, Johnson recommended all departments and agencies take the following actions:
Johnson said he intends to work with Federal inspectors general to ensure these safeguards have been reviewed and are in place in all agencies by August 7. |
|
FISMA: OMB issues reporting instructions for FISMA and privacy management
OMB issued FY 2006 reporting instructions for the Federal Information Security Management Act (FISMA) and for agencies' privacy management programs in a July 17 memo from Deputy Director for Management Clay Johnson III. The instructions require agencies to resolve any differences among contributors and not include conflicting views in the final version submitted to OMB. The FISMA reporting categories and questions are the same as last year, but Johnson stressed that agencies are required to take several additional actions:
The report is due to OMB by October 1. |
|
GAO report calls for stronger processes for identifying and overseeing high-risk IT projects
The U.S. Government Accountability Office (GAO) is calling on OMB to establish a structured, consistent process to designate and oversee high-risk IT projects and to direct agencies to consistently apply OMB's criteria for identifying them. GAO issued its recommendations in a June 2006 report that examined the response to OMB's August 2005 memo directing agencies to identify high-risk IT projects and provide quarterly reports on those with performance shortfalls. In response to the memo, 24 major agencies identified 226 IT projects as high-risk. The projects account for about $6.4 billion in funding requested for fiscal year 2007. Using OMB's criteria, agencies identified IT projects as high-risk based on these criteria:
Thirty-one projects were identified as high-risk using rationale other than OMB's four criteria. High-risk projects and those on OMB's Management Watch List (projects that need improvements associated with aspects of their budget justifications) "require attention because of their importance in supporting critical functions and the likelihood that their performance problems could potentially result in billions of taxpayers' dollars being wasted if the problems are not detected early," the report states. |
|
HSPD-12: Many developments help agencies meet OMB deadlines
As Federal agencies strive to meet OMB's October 27 deadline for agencies to begin to issue secure personal identity verification cards for new employees and contractors under Homeland Security Presidential Directive-12 (HSPD-12), several developments intended to spur compliance have been announced. As part of its mission to provide safe and secure design, production, distribution and management of secure documents for the Federal government, GPO will provide Personal Identity Verification (PIV) cards for Federal agencies as an alternative to in-house ID card personalization or the exclusive use of commercial sources.
|
|
International: OASIS international standards body ratifies emergency data standard
The Organization for the Advancement of Structured Information Standards (OASIS), a de facto international standards body, has ratified a new open IT standard for facilitating data-sharing across local, regional, national and international governments and organizations. The new standard, called the Emergency Data Exchange Language Distribution Element (EDXL-DE) Version 1.0, acts as a header to identify to whom and under what circumstances emergency information is being sent. EDXL-DE will also address resource questions and requests, situation reports, damage assessments and other functionality issues for cross-jurisdictional emergency communications. It was developed by the OASIS Emergency Management Technical Committee, with strong support and assistance from the U.S. Department of Homeland Security. In announcing the new standard on June 20, OASIS quoted Chip Hines, Acting Director of the DHS Office for Interoperability and Compatibility, as saying that "EDXL-DE will facilitate the implementation of a host of standards which will lead to fully interoperable sharing of information in emergency related applications. The ability of this standard to transmit any content, from files to technical data exchange information, provides immediate capability to the emergency response community." |
|
State Government: NGA grants support 6 State information-sharing projects
The National Governors Association (NGA) Center for Best Practices has awarded $25,000 grants to six states to help them share critical public safety information among law enforcement, courts and corrections systems. The grants, which are funded by the Justice Department's Office of Justice Programs, Bureau of Justice Assistance, support information-sharing projects that can be used to design an operational system or process, convene a task force to develop an implementation plan or add to existing funding for implementation. The states will use the grants to complete the following projects by January 2007:
A recent NGA issues brief, Protecting Privacy in Integrated Justice Systems, offered recommendations to help states continue the public safety gains made by information sharing while improving individual privacy protections. |
|
Local Government: Survey ranks 100 large cities worldwide in digital governance
New York City, representing all large cities in the United States, was the second-highest ranked city in a study of digital governance in cities around the world. Seoul, South Korea, ranked highest, with other Far-Eastern cities dominating the 10 top-ranked cities. The study evaluated each city's website in terms of digital governance, including both digital government (delivery of public service) and digital democracy (citizen participation in governance). The research used an e-governance performance index to evaluate e-governance in Hong Kong, Macao, and the most populated cities in 98 countries. Cities were ranked in five areas: "Security and Privacy," "Usability," "Content," "Service," and "Citizen Participation." Seoul scored highest in all categories except "Usability," where New York City topped the list. The 10 highest scoring cities were:
The survey, Digital Governance in Municipalities Worldwide - 2005, was conducted by the E-Governance Institute of Rutgers University-Newark and the Global e-Policy e-Government Institute of the Graduate School of Governance, Sungkyunkwan University, Korea. It was co-sponsored by the United Nations Division of Public Administration and Development Management and the American Society for Public Administration. |
|
The Buzz: Computerworld's "100 Best Places to Work in IT" lists only 3 government organizations for 2006
The U.S. Postal Service (USPS), Miami-Dade, FL, and Fairfax County, VA, are the only three government organizations listed in Computerworld magazine's 13th annual ranking of "100 Best Places to Work in IT 2006," published June 19. The selection of the top 100 best places to work in IT was based on a 100-question survey sent to contacts in companies headquartered in the United States that submitted nominations last August. To qualify, the participants-both public and private-had to have 2005 revenues totaling $250 million or more. They also had to employ at least 500 employees, of whom at least 75 had to work in IT in the U.S. The survey asked about the organizations' average salary and bonus increases, the percentage of IT employees receiving promotions, IT staff turnover rates, training and development opportunities and the percentage of women and minorities in IT staff and management positions. Information was also collected on rewards for outstanding performance, how retention programs are structured and the benefits offered-ranging from elder and child care to flextime and tuition reimbursement. Of the public-sector organizations on the list, USPS ranked 48th; Miami-Dade ranked 76th and Fairfax County ranked 98th. The top five organizations were, in order: Quicken Loans, Inc, the University of Miami, The Capital Group Companies, American Fidelity Assurance Company, and Grant Thornton LLP. |
|
Kudos: 7 government programs earn Innovations in American Government Awards; 9 earn FCW Pioneer Awards
Innovations in American Government Awards Two Federal programs, two State, one county and two city government programs were presented with prestigious Innovations in American Government Awards July 10. The awards, which include $100,000 in prize money, are given to government programs that can demonstrate they are truly creative, measurably effective, meet a significant need and can be transferred successfully to other jurisdictions. This year's seven winners were selected from 18 finalists out of more than 1,000 applicants. The Innovations in American Government Awards, created in 1986, are presented annually by the Ash Institute for Democratic Governance and Innovation at Harvard University's John F. Kennedy School of Government. The awards are administered in partnership with the Council for Excellence in Government. FirstGov.gov was an Innovations Award winner in 2003; OMB's Program Assessment Rating Tool (PART) won in 2005. The 2006 winners are:
Each winner's presentation can be viewed on the Ash Institute's website. Federal Computer Week Pioneer Awards Nine projects that have demonstrated "innovative use of technology in government programs," through either commercial-off-the-shelf (COTS) solutions or other technology applications, have been named winners of Federal Computer Week's Pioneer Awards. The winners are:
The U.S. Postal Service was the winner of the 2006 Successful Public/Private Sector Partnership Award for the USPS Hurricane Reports. The awards will be presented at a luncheon at the itsGov Technology Showcase 2006 on July 26, where the winners will demonstrate their innovative projects. |
Transitions: Changes in the IT Community Also available in pdf 636 kb |
|
Upcoming Events Calendar
GSA Assistive Technology Showcase itsGov Technology Buying at Year-End Showcase National Association of Counties (NACo) Annual Conference Western Information Technology Council Expedition Workshop: Networking Semantic Interoperability International City/County Management Association Conference National Association of Government Webmasters Conference National Association of State CIOs (NASCIO) Annual Conference Executive Leadership Conference FCW Government CIO Summit National Electronic Commerce Coordinating Council Annual Conference |
|
Please send your comments, concerns, complaints and questions to dotgovbuzz@gsa.gov. Check out our previous editions at www.firstgov.gov/dotgovbuzz.html. The DotGov Buzz is produced by the following individuals in the GSA Office of Citizen Services and Communications: |