5 FAM 620 INFORMATION TECHNOLOGY (IT) PROJECT MANAGEMENT



Similar documents
I. U.S. Government Privacy Laws

5 FAM 630 DATA MANAGEMENT POLICY

5 FAM 670 INFORMATION TECHNOLOGY (IT) PERFORMANCE MEASURES FOR PROJECT MANAGEMENT

5 FAM 1060 INFORMATION ASSURANCE MANAGEMENT

INFORMATION DIRECTIVE GUIDANCE GUIDANCE FOR MANUALLY COMPLETING INFORMATION SECURITY AWARENESS TRAINING

INFORMATION PROCEDURE

Minerals Management Service Interim Policy Document

ClOP CHAPTER Departmental Information Technology Governance Policy TABLE OF CONTENTS. Section 39.1

Information Technology Processes FinCEN is an agency whose mission is dependent on the effective collection,

UNITED STATES DEPARTMENT OF THE INTERIOR BUREAU OF LAND MANAGEMENT MANUAL TRANSMITTAL SHEET

IT SECURITY EDUCATION AWARENESS TRAINING POLICY OCIO TABLE OF CONTENTS

NATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL

United States Antarctic Program Information Resource Management Directive The USAP Information Security Program

NATIONAL CREDIT UNION ADMINISTRATION OFFICE OF INSPECTOR GENERAL

FISH AND WILDLIFE SERVICE INFORMATION RESOURCES MANAGEMENT. Chapter 7 Information Technology (IT) Security Program 270 FW 7 TABLE OF CONTENTS

NUMBER OF MATERIAL WEAKNESSES

Information Security Guide For Government Executives. Pauline Bowen Elizabeth Chew Joan Hash

Section 37.1 Purpose Section 37.2 Background Section 37.3 Scope and Applicability Section 37.4 Policy... 5

5 FAH-11 H-500 PERFORMANCE MEASURES FOR INFORMATION ASSURANCE

U.S. Department of Energy Washington, D.C.

E X E C U T I V E O F F I CE O F T H E P R E S I D EN T

OFFICE OF THE INSPECTOR GENERAL SOCIAL SECURITY ADMINISTRATION

U.S. ELECTION ASSISTANCE COMMISSION OFFICE OF INSPECTOR GENERAL

December 8, Security Authorization of Information Systems in Cloud Computing Environments

Audit of the Department of State Information Security Program

2.0 ROLES AND RESPONSIBILITIES

2012 FISMA Executive Summary Report

TITLE III INFORMATION SECURITY

FITSP-Auditor Candidate Exam Guide

EXECUTIVE OFFICE OF THE PRESIDENT OFFICE OF MANAGEMENT AND BUDGET WASHINGTON, D.C

FSIS DIRECTIVE

EPA Classification No.: CIO P-02.1 CIO Approval Date: 08/06/2012 CIO Transmittal No.: Review Date: 08/06/2015

Department of Veterans Affairs VA Directive 6004 CONFIGURATION, CHANGE, AND RELEASE MANAGEMENT PROGRAMS

SECTION 53 INFORMATION TECHNOLOGY AND E-GOVERNMENT. Table of Contents

Exhibit 300: Exhibit Electronic Medical Record (EMR) (Revision 11) 4. Name of this Capital Asset: Exhibit Electronic Medical Record (EMR)

CMS POLICY FOR THE INFORMATION SECURITY PROGRAM

5 FAH-8 H-351 CLOUD COMPUTING

Standards for Security Categorization of Federal Information and Information Systems

POSTAL REGULATORY COMMISSION

Subject: Information Technology Configuration Management Manual

NISTIR 7359 Information Security Guide For Government Executives

Department of Veterans Affairs VA DIRECTIVE 6510 VA IDENTITY AND ACCESS MANAGEMENT

DEPARTMENTAL REGULATION

Legislative Language

Privacy Impact Assessment (PIA) for the. Certification & Accreditation (C&A) Web (SBU)

United States Department of Health & Human Services Enterprise Architecture Program Management Office. HHS Enterprise Architecture Governance Plan

Office of Inspector General

CMS Policy for Information Technology (IT) Investment Management & Governance

Department of Homeland Security

Mission Assurance and Security Services

A. This Directive applies throughout DHS, unless exempted by statutory authority.

NETWORK AND AIS AUDIT, LOGGING, AND MONITORING POLICY OCIO TABLE OF CONTENTS

GAO ELECTRONIC GOVERNMENT ACT. Agencies Have Implemented Most Provisions, but Key Areas of Attention Remain

Department of the Interior Privacy Impact Assessment

CMS Policy for Information Security and Privacy

How To Check If Nasa Can Protect Itself From Hackers

Get Confidence in Mission Security with IV&V Information Assurance

Department of Homeland Security Management Directive System MD Number: 4900 INDIVIDUAL USE AND OPERATION OF DHS INFORMATION SYSTEMS/ COMPUTERS

MEMORANDUM FOR HEADS OF EXECUTIVE DEPARTMENTS AND AGENCIES

Mixed Life Cycle FY2002

Cybersecurity Risk Management Activities Instructions Fiscal Year 2015

Public Law th Congress An Act

How To Control A System

Office of Inspector General

City of Minneapolis Policy for Enterprise Information Management

Integrated Financial Management Information System (IFMIS) Merger

Department of the Interior Privacy Impact Assessment

Audit of Veterans Health Administration Blood Bank Modernization Project

Information Security for IT Administrators

FISH AND WILDLIFE SERVICE LOGISTICS

Evaluation Report. Weaknesses Identified During the FY 2013 Federal Information Security Management Act Review. April 30, 2014 Report Number 14-12

IT SYSTEM LIFE-CYCLE AND PROJECT MANAGEMENT

FEDERAL ELECTION COMMISSION OFFICE OF INSPECTOR GENERAL

GAO DATA CENTER CONSOLIDATION. Strengthened Oversight Needed to Achieve Cost Savings Goal. Report to Congressional Requesters

COMMERCE ACQUISITION MANUAL DEPARTMENT OF COMMERCE PROGRAM AND PROJECT MANAGER CERTIFICATION PROGRAM

Federally Mandated Training for Federal Employees

NASA OFFICE OF INSPECTOR GENERAL

Minimum Security Requirements for Federal Information and Information Systems

Overview. FedRAMP CONOPS

How To Navigate The Maze In Your Organization

A. Title 5, United States Code (U.S.C.), Section 552a, Records Maintained On Individuals (The Privacy Act of 1974)

STATEMENT OF SYLVIA BURNS CHIEF INFORMATION OFFICER U.S. DEPARTMENT OF THE INTERIOR BEFORE THE

OPM System Development Life Cycle Policy and Standards. Table of Contents

Capital Programming and Project Management Under the US Budget

Statement of Danny Harris, Ph.D. Chief Information Officer U.S. Department of Education

SYSTEM NAME: Digital Identity Access Management System (DIAMS) - P281. SYSTEM LOCATION: U.S. Department of Housing and Urban Development, 451 Seventh

CMS Policy for Configuration Management

U.S. DEPARTMENT OF HOUSING AND URBAN DEVELOPMENT INFORMATION TECHNOLOGY SECURITY POLICY. HUD Handbook REV4.1

Reclamation Manual Directives and Standards

PREFACE TO SELECTED INFORMATION DIRECTIVES CHIEF INFORMATION OFFICER MEMORANDUM

Federal Identity Management Handbook

FEDERAL CHIEF INFORMATION OFFICERS COUNCIL CHARTER

13 FAM 800 ACADEMIC DEGREE TRAINING

OFFICE OF INSPECTOR GENERAL. Audit Report. Evaluation of the Railroad Retirement Board Medicare Contractor s Information Security

TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION

3 FAM 2820 PERFORMANCE APPRAISAL SYSTEM FOR GENERAL SCHEDULE AND PREVAILING RATE EMPLOYEES

Information Technology Security Training Requirements APPENDIX A. Appendix A Learning Continuum A-1

Federal Communications Commission Office of Inspector General

Information Security for Managers

SECURE APPLICATION DEVELOPMENT CODING POLICY OCIO TABLE OF CONTENTS

Transcription:

5 FAM 620 INFORMATION TECHNOLOGY (IT) PROJECT MANAGEMENT 5 FAM 621 GENERAL (Office of Origin: IRM/BMP/SPO/PMD) a. The strategic importance of Information Technology (IT) to the mission of the State Department and the U.S. Government is increasing, and projects are becoming more complex. This means that the IT project/program managers role must now shift from a peripheral function to that of a more demanding career discipline. The Office of Management and Budget (OMB) requires the Department to use qualified project/program managers to manage its major IT projects in accordance with Federal guidance to ensure the successful achievement of cost, schedule, and performance goals. In response to these Government-wide requirements, the Department expanded its IT Project Management Program to include qualifications and continuing education requirements for managers responsible for managing both major and non-major IT projects. b. All IT project/program managers of major and non-major IT investments must be qualified in accordance with the Department s IT Project Manager Program guidance. c. Project/program managers must be selected by the senior management responsible for each bureau s major or non-major IT investments. d. The E-Government Program Management Office (E-Gov PMO) determines the classification of IT projects/programs as major or non-major in accordance with OMB Circular A-11. e. Project/Program managers are responsible for complying with the reporting requirements for major and non-major IT investments administered by the E-Gov PMO. f. Project/program managers must complete the Department approved Project management course training as required. (Project Management Training Requirements.) g. Managing State Projects is the preferred System Development Lifecycle 5 FAM 620 Page 1 of 5

Management methodology in the Department for the development, and the operations and maintenance of IT projects and programs. See 5 FAH- 5 H-210 Managing Department of State Projects. h. Project/program managers must not begin a new IT project without the formal approval from the bureau's Executive Director. i. Project/program managers must complete and maintain required Federal and Department Information Security Courses to meet Federal Information Security Management Act (FISMA) role-based training requirements. j. Project/program Managers must complete and maintain required Federal and Department Information Technology and Acquisitions Courses to ensure project and program compliance with the Federal Enterprise Architecture Framework (FEAF) and Federal Acquisitions Regulation (FAR). 5 FAM 622 SCOPE AND AUTHORITY a. This policy applies to all Department organizations and entities as the authority governing management of major and non-major IT investments. The policy provides requirements for project development, integration, modification, and maintenance of the Department IT systems, products, and services. This policy applies to all Department personnel, as well as contractors involved in Department systems and program planning, development, modification, integration, operation, and maintenance. b. The authorities establishing this policy include: (1) Paperwork Reduction Act, Public Law 104-13; (2) Clinger-Cohen Act, Public Law 104-106 (formerly known as the Information Technology Reform Act); (3) Government Performance and Results Modernization Act of 2010, Public Law 111-352; (4) E-Government Act of 2002, Public Law 107-347; (5) Federal Information Security Management Act of 2002 (FISMA), Public Law 107-347, Title III; (6) Government Paperwork Elimination Act of 1998, Public Law 105-277; (7) Electronic Signatures in Global and National Commerce Act, June 30, 2000, Public Law 106-229; (8) OMB Circular A-130 Revised, Appendix III, November 28, 2000; 5 FAM 620 Page 2 of 5

(9) HSPD-7, 7 Critical Infrastructure Protection Plans to Protect Federal Critical Infrastructures and Key Resources; (10) Federal Acquisition Regulation (FAR) Sections 7.102, 10.002 and 11.105; (11) FAR, Subpart 34.2; (12) ANSI/EIA-STD-748-A; (13) Section 508 of the Rehabilitation Act of 1973 (29 U.S.C. 794d); (14) Executive Order 13011 (Federal Information Technology); (15) NIST SP 800-64, Security Considerations in the Information System Development Life Cycle, June 2004; (16) NIST SP 800-65, Integrating IT Security into the Capital Planning and Investment Control Process; (17) Privacy Act of 1974, (5 U.S.C. and 552a), as amended; (18) M-07-16, Safeguarding Against and Responding to the Breach of Personally Identifiable Information (May 22, 2007); (19) M-06-15, Safeguarding Personally Identifiable Information (May 22, 2006); (20) M-06-16, Protection of Sensitive Agency Information (June 23, 2006); (21) M-06-19, Reporting Incidents Involving Personally Identifiable Information (July 1, 2006); (22) M-09-02, Information Technology Management Structure and Governance Framework (October 21, 2008); (23) M-10-27, Information Technology Investment Baseline Management Policy (June 28, 2010); (24) M-11-29, Chief Information Officer Authorities (August 8, 2011); (25) M-12-18, Managing Government Records Directive (August 24, 2012); (26) M-13-09, Fiscal Year 2013 PortfolioStat Guidance: Strengthening Federal IT Portfolio Management (March 27, 2013); (27) M-13-13, Open Data Policy, Managing Information as an Asset; (28) Homeland Security Presidential Directive 12 (HSPD-12) (5 FAM 100); (29) OMB, A Common Approach to Federal Enterprise Architecture (May 2, 2012); (30) OMB, Revisions to the Federal Acquisitions Certification for Program and Project Managers (FAC-P/PM) (December 16, 2013); 5 FAM 620 Page 3 of 5

(31) OMB Circular A-11, Preparation, Submission and Execution of the Budget (July 26, 2013); (32) OMB, Guidance for Specialized Information Technology Acquisitions Cadres (July 13, 2011); and (33) OPM, Competency Model for IT Program Management (July 12, 2011). 5 FAM 623 IT PROJECT MANAGEMENT PROGRAM 5 FAM 623.1 Investment Categories The Department IT projects are classified into two categories, major and non-major, and are categorized below based on the following IT project management standards: (1) Major IT investment refers to an IT investment requiring special management attention because of its importance to the mission or function to the government; significant program or policy implications; high executive visibility; high development, operating, or maintenance costs; unusual funding mechanism; or definition as major by the agency s capital planning and investment control process. OMB may work with the agency to declare IT investments as major investments. The Department will consult with the assigned OMB analysts regarding which investments are considered major. Investments not considered major are non-major; and (2) Non-Major IT Investment refers to any IT investment in the Department's IT portfolio that does not meet the definition of Major IT investment. All non-major investments must be reported in the Agency IT Portfolio Summary. 5 FAM 623.2 Project Manager Training Requirements a. Project/program managers must meet the five basic requirements for managing any IT projects. These requirements are: (1) Acceptable levels of experience, education, and training; (2) Successful completion of the Managing State Projects (MSP) course; 5 FAM 620 Page 4 of 5

(3) Successful completion of the Department s contracting course; (4) Successful completion of the Department s mandatory leadership training program; and (5) Successful completion of continuing education requirements of 40 hours or more on an annual basis. The 40 hours are tracked using FAITAS as verified by an employee s supervisor. b. Project management training may be classroom, distance learning, or blended learning (combination of classroom and distance learning) as made available through the Department s Foreign Service Institute (FSI) Skillsoft General Library. FSI courses are aligned with the industry s leading Project Management Body of Knowledge (PMBOK) project management curriculum. c. Non-FSI training costs must be paid using funds from the sponsoring Bureau requiring the training. 5 FAM 624 PROJECT CYCLE a. By using the project cycle, project/program managers can establish project goals, provide direction, and encourage teamwork more effectively. A project cycle consists of periods, phases, and activities. Regardless of the type or development model used, the following are common to any project: (1) Benefit and/or cost and requirements analyses; (2) Formal review and approval procedures; (3) Schedule of activities; (4) Standard documentation; (5) Quality assurance; and (6) Configuration management. b. As an example, the MSP cycle consists of three distinct periods: study, acquisition, and operations, explained in 5 FAH-5 H-210 Managing Department of State Projects. The periods, phases, and activities within a project cycle can be tailored depending upon the project s type, size, and complexity. 5 FAM 625 THROUGH 629 UNASSIGNED 5 FAM 620 Page 5 of 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information