Procurement: Avoiding Risky Business

/in , /by

The NASCIO Procurement Modernization Committee, in partnership with TechAmerica and the National Association of State Procurement Officials, continues to focus on state IT procurement reforms and highlight best practices at the state level. This brief is the third in a series of recommendations set forth by this collaborative. The purpose of the brief is to highlight some of the strategies used to first identify, then to avoid, transfer, mitigate, and ultimately accept the risks associated with the procurement of IT products or services. Although not all risks can be identified, the goal should be to understand how much risk is associated with a specific IT procurement and what tools, processes, benchmarks, and methodologies are available to uniquely address IT procurement risks.

Download

NASCIO Cybersecurity Awareness Resource Guide

/in /by

For the 2013 observance of National Cyber Security Awareness Month, NASCIO has updated its Resource Guide for State Cybersecurity Awareness, Education, and Training Initiatives. The guide includes new information from our state members, who provided examples of state awareness programs and initiatives. This is an additional resource of best-practice information, together with an interactive state map to allow users to drilldown to the actual resources that states have developed or are using to promote cyber awareness. It includes contact information for the CISO, hyperlinks to state security and security awareness pages, and information describing cybersecurity awareness, training, and education initiatives.

The Resource Guide is a work-in-progress that should provide a valuable reference resource for Cyber Security Awareness Month, as well as the ongoing planning of security awareness and training efforts state programs may undertake thereafter.

Download

Effective Cross-Jurisdictional Collaboration – Governance is Critical!

/in , , , /by

Cross-jurisdictional collaboratives are on the rise. As the number of such collaboratives increases, there are essential ingredients for framing and sustaining successful and even exceptional collaborative arrangements that deliver real outcomes. As NASCIO reviewed successful collaboratives, proper governance continually surfaced as one of those essential ingredients for effective sharing of government information and services and effective employment of technology across two or more enterprises. This issue brief presents examples of effective governance and describes what constitutes effective governance.

Download

Commonwealth of Virginia’s EIA Strategy and NIEM Integration Plan

/in , , , /by

Commonwealth of Virginia’s EIA Strategy and NIEM Integration Plan

The Commonwealth of Virginia has completed an eight-month strategic planning process to develop an Enterprise Information Architecture (EIA) strategy.  A central element of the EIA strategy involves building exchanges for “citizen-centric” data that conform with the National Information Exchange Model (NIEM).

Virginia’s NIEM integration plan will enable the state government to comply with new statutory requirements for standardizing Person data and promote enhanced capabilities for business-driven information exchanges.

This webinar will provide insight on Virginia’s emerging EIA strategy and NIEM integration planning.  The primary focus will be on Virginia’s EIA strategic plan and successful implementation of the NIEM Engagement Process.

Host: 
Eric Sweden, MBA, MSIH
Program Director, Enterprise Architecture & Governance
NASCIO

Presenter:
Dr. Joseph W. Grubbs
Commonwealth Data Governance Service Lead &
Health Information Technology Standards
Advisory Committee (HITSAC) Administrator
Enterprise Solutions and Governance Directorate
Virginia Information Technologies Agency (VITA)
www.vita.virginia.gov

Joseph W. Grubbs, Ph.D., serves as the Commonwealth of Virginia’s Enterprise Information Architect and Service Lead for the Data Governance Group in the Virginia Information Technologies Agency (VITA).  In that capacity, he acts under the direction of the Secretary of Technology, CIO of the Commonwealth and the Enterprise Solutions and Governance Directorate to manage the state government’s Enterprise Information Architecture Program.  Dr. Grubbs also administers Virginia’s Health Information Technology Standards Advisory Committee (HITSAC). He has a Ph.D. in Urban Affairs and Public Policy from the University of Delaware and a Master’s of Public Administration from the University of Central Florida.

Files:
Download Presentation

Download Audio

 

 

 

The Health IT Landscape: Through the Lens of the State CIO

/in , , /by

The Healthcare Information and Management Systems Society (HIMSS) and National Association of State Chief Information Officers (NASCIO) formed a collaboration to determine how the State Chief Information Officer (CIO) views the current health information technology landscape. Specific areas of focus for this study included Medicaid Management Information Systems (MMIS), Medicaid Eligibility Systems, Data Governance and Identity Management, State Level Health Information Exchanges, Shared Services and Collaborations. This study combined HIMSS’ expertise in health information technology and information exchange with NASCIO’s expertise representing state CIOs and information technology executives from the states, territories and the District of Columbia. The results of this collaborative survey will serve those seeking to understand the current environment of State healthcare technology initiatives ranging from governance models to data exchange activities. This analysis will also facilitate understanding of the intersection of the state CIO’s role with state health information technology (HIT) projects. This collaboration represents one of the first holistic analyses focused on the state CIO perspective of State HIT projects.

Download

Capitals in the Clouds Part V: Advice from the Trenches on Managing the Risk of Free File Sharing Cloud Services

/in , , /by

Cloud-based file sharing solutions have become very popular and certainly a growing and significant part of day-to-day computing. It is easy to see why these services are attractive to state government users after using them in many facets of their personal life. With a wide variety of choices in the market, these solutions are easy to access, configure and use. They support multiple devices (especially mobile), and data in multiple formats. The most important consideration for state employee users – these file sharing services are free. Since the release of the 2012 NASCIO and Deloitte Cybersecurity Study, more security and policy questions have been raised on the use of free cloud services by states. In addition to the May 2012 Capitals in the Clouds IV guidance on rogue cloud users, states have continued to seek out leading practices on how to put the proper controls in place, meet security standards, craft acceptable use policies, and identify the open records and legal concerns regarding terms of service. This brief helps to provide real experience from Commonwealth of Pennsylvania on free cloud services.

Download

The Changing Roles of the Chief Architect and the CIO

/in , /by

Three important findings have combined to motivate this topic:

  • #1 Poor data management performance to date (requires additional or difference effort)
  • #2 Recognition that data is not a project (requires a difference approach)
  • #3 Lack of domain expertise (requires different career preparation)

Combined these three findings require a new look at these roles.  This webinar will explore the role of a Chief Data Officer (CDO) as a function needed by organizations (especially state governments).  While we don’t yet have all the answers, we can at least lay out three necessary but insufficient prerequisites to making progress faster than we have achieved to date.

Host:
Eric Sweden,
Program Director, Enterprise Architecture & Governance
NASCIO

Presenter:
Dr. Peter Aiken
Associate Professor
Department of Information Systems/VCU
President:  DAMA-International  http://dama.org

Peter Aiken, Ph. D. is widely acclaimed as one of the top ten data management authorities in the world.  In addition to examining the data management practices of more than 500 organizations, he has spent multi-year immersions with organizations as diverse as the U.S. Department of Defense, Deutsche Bank, Nokia, Wells Fargo, the Commonwealth of Virginia, and numerous other high profile clients.  As President of DAMA International, his expertise in the practice is unquestioned.  He has been an Associate Professor at Virginia Commonwealth University’s School of Business Information Systems Department since 1993 and owns Data Blueprint, an award-winning data management and IT consulting firm.
Files:
Download Presentation

 

 

 

Download Audio

 

 

 

Driving Efficiency and Innovation by Consistently Managing Complexity and Change

/in , /by

This presentation outlines the four pillars of a Holistic Enterprise Architecture: architectural models, framework, methodology, and implementation/solution models. It also explains the business and technology gains, and demystifies the practice of implementing a successful Holistic Enterprise Architecture.

Agenda:

  • The Four Pillars of Holistic Enterprise Architecture
  • Business and Technology Gains Achieved through Enterprise Architecture
  • How to Implement Successful Holistic Enterprise Architecture

Host:
Eric Sweden,
Program Director, Enterprise Architecture & Governance
NASCIO

Presenter:
Samuel B Holcman
Pinnacle Business Group, Inc.
Enterprise Architecture Center Of Excellence (EACOE)
Business Architecture Center Of Excellence (BACOE)

Summary:
This presentation outlines the four pillars of a Holistic Enterprise Architecture: architectural models, framework, methodology, and implementation/solution models. It also explains the business and technology gains, and demystifies the practice of implementing a successful Holistic Enterprise Architecture.

It is only within the past 20 years that we have begun to develop an art and science for identifying and defining the graphical and textual descriptions of whole enterprises. Until this time, any art or science that we had related to this endeavor pertained to parts of enterprises – for example, organizational design and/or systems development. Because the focus of this presentation is on Enterprise Architecture, have there been successful enterprises that were never architected?

Yes. However, they were successful in relation to other non-architected enterprises. Moreover, the pace of change was slower in the industrial age, compared with the information age of today. Contemporary enterprises have to be able to adjust much more rapidly to meet changing demands in the face of global competition. This makes it critical to have readily available descriptive representations of one’s enterprise to use as a basis for making change.

The age-old question now arises in enterprises:

  • How can one change something that one cannot “see”?
  • How does one “see” an enterprise?

This is Holistic Enterprise Architecture.

DISCLAIMER
NASCIO makes no endorsement, express or implied, of any products, services, or websites contained herein, nor is NASCIO responsible for the content or the activities of any linked websites. Any questions should be directed to the administrators of the specific sites to which this publication provides links. All critical information should be independently verified.

This project was supported by Grant No. 2010-DJ-BX-K046 awarded by the Bureau of Justice Assistance. The Bureau of Justice Assistance is a component of the Department of Justice’s Office of Justice Programs, which also includes the Bureau of Justice Statistics, the National Institute of Justice, the Office of Juvenile Justice and Delinquency Prevention, the Office for Victims of Crime, and the SMART Office. Points of view or opinions in this document are those of the author and do not necessarily represent the official position or policies of the U.S. Department of Justice.

Files:
Download Audio

Limitations on Liability Infographic

/in /by

NASCIO’s 2004 publication NASCIO on Unlimited Liability – Gaining Traction on the Road to “Win-Win” recommended changes to the state IT procurement policy regarding limitations on liability, and research from 2010 and 2012 show subtle changes have occurred in the states. This infographic indicates which states have limitations on liability in statute, which states have none, and which states are able to negotiate limitations on a case by case basis, and compares the current situation to previous NASCIO research.

Download