IT Challenges and the States: Trends, Priorities and Policy Issues Council of State Governments 2006 Annual State Trends and Leadership Forum Technology Working Group Phoenix, AZ December 1, 2006 Tom Jarrett Chief Information Officer/Secretary State of Delaware Doug Robinson Executive Director NASCIO
About NASCIO NASCIO represents state chief information officers and information resource executives from the fifty states, six territories, and D.C. NASCIO's mission is to foster government excellence through quality business practices, information management, and technology policy.
NASCIO Goals NASCIO is the premier network and resource for state CIOs NASCIO is an effective advocate for information technology policies at all levels of government Advance CIOs as key members of the statewide leadership team
Recap: Priorities for NASCIO in 2006 IT Enterprise Infrastructure & Services Information Security & Privacy Health Information Technology Enterprise Architecture IT Project Management Forum
State IT Environment Today IT security is critical concern risk impact! Sharing of data, infrastructure & resources (intra and inter-governmental) Infrastructure optimization: consolidation by legislation or directive Interoperability wireless infrastructure Service delivery integration: e-government IT workforce - succession/transition (aging) Pent-up demand for IT deployment
State CIO Priorities: 2007 1. Security: Tightening security safeguards, enterprise policies, employee education 2. Consolidation: centralizing, consolidating services, operations, resources, infrastructure 3. Shared Services: Sharing resources, services, infrastructure, 4. Cross-boundary: establish relationships, joined-up government, local government collaboration/cooperative initiatives 5. Disaster Recovery: Improving disaster recovery, business continuity planning and readiness 6. Health Information Technology: Assessment, partnering, implementation NASCIO State CIO Survey, Nov 2007
Which of the following would you rate as the most significant challenge facing state CIOs? 13%A. 30% 26% 16% 15% Lowering IT costs to meet demands for more efficiencies and better services B. Increase IT efficiency and effectiveness through adoption of leading practices and emerging technologies C. Mitigate security risks and ensure business continuity D. Promote enterprise integration of the IT infrastructure E. Strengthen role of CIO to promote higher levels of influence and responsibility within the enterprise NASCIO Midyear Conference, June 2006
Appointment Status of State CIOs December 2006 CA OR WA NV ID UT MT WY CO ND SD NE KS MN WI IA IL MO IN MI OH KY WV VT PA VA NY NH ME NJ DE MD CT MA RI GU AZ NM TX OK AR LA MS TN AL GA SC NC DC FL HI AK KEY: PR Official Acting/Interim
State IT Organizational Models No one right way it depends Complete decentralization Decentralization with critical elements consolidated Federated agency decision making State IT Authority full consolidation Higher education, legislature and courts usually off limits
State IT Management Trends Trend toward more IT consolidation and shared services, but fluctuations Focus on IT spending control and business process improvements Increased resources devoted to enterprise IT security Outsourcing state portals and transaction services ERPs and focus on legacy replacement
Trend: More Business Disciplines in IT Enterprise architecture: blueprint for better government More focus on business processes improvement Formal risk assessments Procurement reform strategic sourcing, leverage buying power and rationalization
Trend: Discipline Succeeds Project and Portfolio Management: PM framework, methodology, education, tools and oversight Change management demands attention Service Level Management
DTI Project & Change Management Our Focus Is On Service Delivery Project & Change Management Services Status Of Projects All Projects $186,772,342 Red, 0, 0% Yellow, 65,290,554, 35% Green, 121,481,788, 65% On Target no risk In Progress may complete late At Risk needs attention
Information Security and the States Trends hacking, spyware, malware and phishing directed at state government More aggressive threats - organized criminal activity? Increasing level of threats Growing role of state CISO Investments by state CIOs
DTI Security Program National Security Benchmarking Effort States we engaged in the effort What country was Vendor participants the most common source of the Collaborative Efforts intrusion attempts - Multi-state ISAC against your - US Department of Homeland Security organization? - NASCIO - Microsoft - FBI INFRAGARD Global Security Cooperation Program
Health IT: Major State Issues Interoperability information exchange Data standards and formats Lack of funding and incentives to accelerate deployment Medicaid coverage, waivers, innovations Legal, regulatory and administrative barriers Security and privacy concerns: HISPC project Information dissemination and education
What government capabilities or services do you believe have the most potential to be improved through better application of information technology? 9% A. Education 64% 17% 1% 9% 1% B. Health and Human Services C. Public Safety D. Revenue E. Administration F. Transportation NASCIO Midyear Conference, June 2006
Why is NASCIO Interested in HIT? Significant role of state in healthcare as Payer Medicaid, SCHIPs, other programs Provider increased emphasis on quality of service Purchaser over 5 million employees nationwide
Communications Landscape and the States Telecom reform fast lanes, IPTV and fees Access to content priority routing Net neutrality transport layer neutral? Taxes and fees for VoIP? Interoperable communications - wireless for public safety Transition to IPv6 next generation Internet Broadband adoption and rich media
Please select the most important telecommunications issue for your organization. 25% 11% 12% 36% 4% 8% 4% A. Information Security (protect sensitive information from unauthorized viewing) B. Cost reduction and efficiency (increasing needs/legal requirements on limited budgets) C. Mobility (remote access) D. Interoperable Communications (need to be able to quickly communicate with each other and other command centers). E. Managed services (outsourcing IT responsibilities) F. Voice and Data network convergence G. Adoption of Voice over IP (VoIP, IP telephony) NASCIO Midyear Conference, June 2006
Select the top three areas for IT/Telecom investment for your organization in 2007. 12% A. Data Management/Information Sharing 13% B. E-Government/Improving Citizen Services 15% 7% C. Information Security D. Mobile Workforce/Wireless Operations 14% E. Interoperability and Integration 10% F. Managing/Replacing Legacy Systems 4% 25% G. Homeland Security Initiatives H. IT Consolidation/Shared Services NASCIO Annual Conference, October 2006
Telecommunications Landscape and Broadband The Bigger News: regardless of the type of broadband connection used now, large majority in US are interested in high-bandwidth broadband Users are eager for new applications Consumers prefer the triple play of services: voice, video and data Bundled services: future growth
Considering the Future: States and Broadband Broadband competition many choices and flavors State regulatory environment Federal net neutrality State initiatives to promote broadband Municipal broadband initiatives: Wi-Fi Rural areas left in the slow lane?
800MHz Next Generation Provide statewide communications for all state, county and municipal government agencies, including fire and emergency medical services Provide in-building coverage for over 2,500 buildings Replace lifecycle support for 10-year old infrastructure Enhance interstate interoperability with surrounding jurisdictions Enhance intrastate interoperability City of Wilmington
The REAL ID Act = Real Challenges State cost impact - $11 billion? Implementation timeline Re-enrollment nightmare DL/ID design requirements Process improvements New verification processes Data harmonization
The State CIOs: A View Forward Critical infrastructure protection - disaster recovery & business continuity Healthcare costs and health IT Security imperative culture & process Continued intense focus on privacy Strategic sourcing and alliances REAL ID the unknowns and opportunities
DTI Key Initiatives KEY PROGRAM GOALS NEXT 2 YEARS: 1. 800MHz Next Generation 7. e-government Program 2. ERP Service Delivery 8. Enterprise Project Management (Financials, T&L etc) Program 3. COTS Courts Organized To Serve 9. Statewide Disaster Recovery (Phases 1-4 of 8 total) and Business Continuity Program 4. New State Data Center 10. Internet 2 Deployment 5. Network Operations Center 11. Enterprise GIS 6. Enterprise-wide Information Security 13. Broadband Deployment Program Transparent LAN Service (TLS) KEY POLICY GOALS NEXT 2 YEARS: 1. Enterprise IT Security Policy 7. Statewide Data Center Policy 2. Statewide IT Strategic Plan 8. Systems Architecture Standard 3. Identity Indentity Access Management Policy 9. Implementation of new Data Classification Policy 4. e-discovery Policy / Standards 10. Service Oriented Architecture Policy 5. Customer Relationship Management 11. Document Control Policy / Standard Policy 6. Imaging and Document Management 12. Electronic Signature Standard
The Challenges of Transition 36 gubernatorial elections just completed 11 new governors Threats to success: no IT understanding on the transition team -- miss major opportunities to leverage governor's agenda Projects of the past tough choices Even with second term governors, the agenda changes
OPPORTUNITIES: What do you see as the major opportunity for the coming transition? 25% 20% 39% 7% 8% 1% A. The focus on the governor's agenda opens "enterprise alignment" opportunities for IT B. The multi-year horizon opens a window for longer-term reforms C. Key IT issues are ripe for 2007 action: shared services; REAL-ID; homeland security; health care reform; etc. D. New opportunities because leadership going to younger, more IT-savvy people E. The vendor community can help improve understanding of the strategic role of technology in the global knowledge economy F. Other? NASCIO Annual Conference, October 2006
Questions? Doug Robinson NASCIO Executive Director 201 East Main, Suite 1405 Lexington, KY 40507 859-514-9153 drobinson@amrms.com www.nascio.org